Getty Images

A CFO trying to determine whether customer data are vulnerable to information technology theft or malware will find there are no easy answers. To get handle this complex issue, John Parkinson of Waterstone Management Group suggests questions CFOs should ask as a starting point, including "Do we have a clear information security policy (or set of policies) and does every employee know what they are?"; "Do we have a regular process for penetration testing of our network perimeter?"; and "Do we have a data-loss prevention strategy in place and the appropriate tools to enforce it?"

Full Story:

Related Summaries