Cybersecurity Advisory Services Certificate

New York City, NY

Jun 20 - 21, 2018


Cybersecurity Advisory Services Certificate - NY

Cybersecurity threats are escalating, unnerving the boards of directors, managers, investors and other stakeholders of organizations of all sizes—whether public or private. Organizations are under increasing pressure to demonstrate that they are managing threats, and that they have effective processes and controls in place to detect, respond to, mitigate and recover from cybersecurity events.

Cybersecurity yields potential business opportunities for a firm to better serve its clients. As a trusted business advisor, firm practitioners can provide advisory services that help companies spot cybersecurity weaknesses, identify potential risks and offer advice on how to safeguard information and systems.

During this two-day live event, learn how you can help your clients navigate threats by becoming a trusted business advisor for their organization's cybersecurity risk management programs. The event covers:

Day One

  • Cybersecurity Risk Management Program Overview
  • Cybersecurity Advisory Service Opportunities
  • Cybersecurity Examination Services Versus Advisory Services
  • Cybersecurity Frameworks

Day Two

  • Drivers for Cybersecurity Advisory Needs
  • Gap Analysis and Risk Assessment
  • Common Cybersecurity Advisory Services

Upon completing the learning, you will be awarded with a certificate in the form of a digital badge to be proudly displayed anywhere on the internet—a personal blog, a social network like LinkedIn, Facebook, Twitter, Mozilla Open Badges, a biographical page on a company website, or an online resume.

Learning Objectives

This course will prepare you to do the following:

  • Articulate the nature and types of cybersecurity advisory services that can be performed
  • Identify key considerations of each of those advisory services
  • Recognize what one would need to effectively perform advisory services

Key Topics

  • Cybersecurity risk management program overview
  • Cybersecurity advisory service opportunities
  • Cybersecurity examination services versus advisory services
  • Cybersecurity frameworks, including the AICPA cybersecurity risk management program reporting framework
  • Drivers for cybersecurity advisory needs
  • Gap analysis and risk assessment
  • Common cybersecurity advisory services, such as SOC for Cybersecurity readiness assessments and penetration testing
  • Tools to effectively perform advisory services including qualifications and certifications, backgrounds and expertise, and other resources you would need to market and deliver in quality manner

Who Will Benefit?

  • Practitioners who are interested in providing cybersecurity advisory services and want to build their competencies in and understanding of these types of services. Likely participants may already have SOC for service organizations practices and are looking to expand into cybersecurity. Participants must have either IT expertise or access to IT professionals who possess the skills to perform this work.
  • CPAs in public accounting firms who are providing non-consulting and advisory services for clients of the firms (e.g. tax or A&A services) and need to be able to intelligently convey the value of a cybersecurity risk management program to their clients (to then hand off to the cybersecurity specialist within the firm).
  • Management accountants and internal auditors who want to understand the types of services available to their organizations related to the management of cybersecurity risks.

Learning for Trust Services Criteria and Description Criteria

The content within this certificate program references the trust services criteria and description criteria. If you need guidance and examples, then consider purchasing Walkthrough of the Trust Services Criteria and Walkthrough of the Description Criteria.


Free eBook with purchase!

Reporting on an Entity's Cybersecurity Risk Management Program and Controls - Attestation Guide is free ($89 value) and will automatically be added to your cart and My Account when you purchase this certificate. Created by the AICPA, this authoritative guide provides interpretive guidance to enable CPAs to examine and report on an entity's cybersecurity risk management program and controls within that program. The guide delivers a framework which has been designed to provide stakeholders with useful, credible information about the effectiveness of an entity's cybersecurity efforts.

Additional savings!

IMTA Section Members, CITP Credential Holders and CGMA Designation Holders qualify for an additional $100 off! When you log into this website with your AICPA member user account, the section/credential discount will be automatically applied during checkout.

PCPS Members save an additional $100. Login here to obtain the discount code. If you are not a member, find out more about PCPS Membership benefits. Should you have any questions or encounter any issues, please contact the AICPA Service Center at 888-777-7077 or service@aicpa.org.

Speaker Bio

Thomas J. Gancarski, CIPP/E, CPA

Tom is a Senior Consultant at A-LIGN, a compliance, cyber risk & privacy, and cybersecurity firm, where he specializes in data privacy, risk management, and security compliance engagements relating to GDPR, Privacy Shield, and similar regulations. Prior roles include compliance and risk management positions at Deutsche Bank, HSBC and BNY Mellon. He also worked as an auditor at a regional consulting firm. Tom has spoken at cybersecurity events on multiple topics including governance and vendor risk management. Tom's interests include fraud investigations, board matters, business valuations, alternative dispute resolution, and expert testimony. He holds a JD and is licensed to practice law in Massachusetts. Tom is also a Certified Public Accountant (CPA) a Certified Information Privacy Professional/ Europe (CIPP/E), and a Certified Information Systems Auditor (CISA).

Cancellation Policy

On-Site Conference: You may cancel without penalty if cancellation request is received up to and including 45 days prior to the start of the conference. Due to financial obligations incurred by the AICPA, a credit less 50% of the registration fee will be issued for requests received up to and including 21 days prior to the start of the conference. No refunds or credits will be issued on cancellation requests received less than 21 days prior to the start of the event.

Group Sales Savings

Create learning retreats for your team!

Register 5 or more participants and receive significant savings. For more information, contact your conference group sales representative, Corinne Alford at Corinne.Alford@aicpa-cima.com.

Travel & Accommodations


AICPA Boardroom
1211 Avenue of the Americas, 19th Floor
New York, NY 10036

Business Casual

Online Conference System Requirements

Attending Online is easy! Check the System Requirements below and install Adobe Flash if you haven't already, then visit this demo page once you're ready to check for compatibility.

NOTE: For sessions that are audio-only, you use the same player and have the experience as the above demo page, but there will be a static image in place of the video stream.

  • Adobe Flash plugin (Click on link to install) http://get.adobe.com/flashplayer/
  • Supported Browsers: Internet Explorer 8 or Higher, Firefox, Chrome, Safari
  • Computer with Speakers / Headset
  • High speed internet connection