a web-based firewall for free.
Buy a relatively cheap firewall to safeguard your Internet connection.
Get “endpoint protection” through your anti-virus package for items like servers, workstations, and mobile devices that are used to connect enterprise networks.
The goal is to shield your computers from exposure to the Internet and discovery by the bad actors. Consider professional installation: for about an hour or two of consulting, an expert can install your firewall and make sure it is configured correctly to protect you.
Take advantage of the benefits cloud providers
Most applications are now available in the cloud via providers that have the resources to keep your data secure. Take email for instance. Large, reputable providers offer cloud-based email service, among other offerings, for a monthly subscription fee per user. While that option may seem more expensive, it's important to consider the benefits of having that provider supporting your email and maintaining uptime and security.
Use caution when choosing service providers
Many small organizations are outsourcing their IT to service providers. For a monthly fee, the service provider handles all or part of your IT work so you can focus on business operations. Be sure you choose a reputable provider if you go this route. Check references and SOC reports, when available, and choose a provider that is well established. You will also want to be sure their service level agreement regarding uptime, service visits, etc. will meet your organization's needs.
Consider cyberinsurance
You may want to look into cyberinsurance. Depending on the coverage, it could be relatively inexpensive and could come in handy should your organization ever be breached. This insurance can help with the costs of reputational damage and recovery, among other potential challenges of a breach.
Cybersecurity is not a new topic, yet many organizations are still finding themselves ill-prepared to handle cyber threats and attacks. A culture of awareness is critical for all organizations, regardless of size, type, or budget. Arming your people with the knowledge and tools they need to safeguard data and systems will go a long way in mitigating the threats the bad actors pose in today's business environment. In addition, there are tactics and strategies you can employ to further protect your organization against breaches that don't all cost a fortune. Consider the tips and best practices offered in this article and visit the Cybersecurity Resource Center for additional information.
Additional Resources:
CGMA Cybersecurity Risk Management ToolThis tool helps companies monitor and manage the risk of cybersecurity threats and respond to potential breaches.
Podcast: Cybersecurity and Ransomware—Protecting Yourself from AttackHear cybersecurity expert Brian Edelman discuss recent ransomware attacks in this free podcast.
Cybersecurity Fundamentals for Finance and Accounting Professionals CertificateDevelop your fluency and gain the confidence to make sound strategic decisions regarding cybersecurity risk and learn what you should be doing as a non-IT professional to help protect your organization or clients from cyber threats.
Criteria for Management's Description of a Cybersecurity Risk Management Program
Use these criteria to design and describe your organization's cybersecurity risk management program.
Prepared by AICPA, Not-for-Profit Section.
Additionally, the IRS created the following new educational program.
2021 Nationwide Tax Forums Online course listing on October 10, 2021
WASHINGTON—The Internal Revenue Service today announced that 18 new self-study seminars are available through the IRS Nationwide Tax Forums Online.
Tax professionals—CPAs, enrolled agents, Annual Filing Season Program participants, and others—can earn continuing education for $29 per credit.
The new seminars were recorded in July and August at the 2021 IRS Nationwide Tax Forum.
1 Advocating for Taxpayers in Order to Avoid Abusive Tax Schemes
2 Be Tax Ready—Understanding Rules for Due Diligence and the Child Tax Credit and Earned Income Tax Credit Under the American Rescue Plan Act of 2021
3 Charities & Tax-Exempt Organizations Update
4 Closer Look at the IRS Independent Office of Appeals
5 Collection Flexibilities During Difficult Economic Times
6 Common Issues Presented to OPR and Best Practices to Address Them
7 Determining an Individual's Tax Residency Status
8 e-Services and You
9 Gig Economy
10 Helping You and Your Clients Steer Clear of Fraud and Scams
11 Key Enforcement Issues
12 Keynote Address
13 Keys to Mastering Due Diligence Requirements and What to Expect During a Due Diligence Audit
14 Overview of Taxpayer Civil Rights
15 Professional Responsibility Obligations when Practicing before the IRS: OPR and Circular 230
16 Retirement Plans—IRS Compliance Initiatives
17 Tax Law Changes from a Forms Perspective
18 Virtual Currency
These 18 courses are now available in addition to 37 sessions from previous years that are also available for credit.
I want to suggest again to readers to always carefully read the instructions to IRS Forms 990, 990-PF, 990-T and others that are required to be filed. Readers can also find some useful news and information on the IRS News, particularly if you are interested in both exempt and nonexempt entities, which is distributed as an email most days of the week. The July 21, 2021, version encouraged, for example, readers to look for Tax Law Answers and to Use the Interactive Tax Assistant to find answers to your tax law questions. An important news item on September 10, 2021, announced, for example, the deductibility of COVID-19 tests in time for individuals to claim the deduction on the 2020 return.
§ 1.4 Role of the Internal Revenue Service
p. 14. Add at beginning of section:
The IRS's Tax Exempt and Government Entities (TE/GE) Division on an ongoing basis seeks to meet its responsibility to provide the best possible service to taxpayers as it administers its responsibility for enforcing the rules set forth in the federal tax code. Its role ranges from designing forms to writing instructions and memoranda to explain
