Business Daily Media

Men's Weekly

.

From bean-counters to cyber-sleuths: how accountants are a frontline defence against online crime

  • Written by Zhongtian Li, Senior Lecturer, Business School, University of Newcastle

Once considered to be simply “bean counters”, accountants now play an important role in the defence, investigation and protection against cybercrime.

Modern cybercrime includes stealing personal information, hacking into systems, spreading viruses and tricking people into giving away money or data via their business email addresses.

In Australia, the average cost of a single cybercrime report[1] in 2022 was A$39,000 for small businesses, $88,000 for medium businesses and $62,000 for large businesses.

In New Zealand, direct financial losses from cybercrime[2] reached NZ$6.6 million in the first quarter of 2024.

Although there is general guidance on cybersecurity[3], there is limited information about the specific role accountants can play in its detection and prevention.

Traditionally focused on financial elements of a business, accountants are often now the frontline of responding to cybercrime.

Our research[4] examined the role of accountants in cybersecurity and how professionals in these roles can protect businesses from online threats.

From safekeepers to data gardeners

As the keepers to sensitive data, including tax records, payroll information and business transactions, accountants can play an essential role in reducing the impacts of cybercrime.

We conducted 21 interviews with management accountants, cybersecurity experts, legal professionals and senior executives in Australia and New Zealand.

Our findings highlight the following roles accountants can take.

Safekeepers

We found accountants are on the frontline of protecting their organisations from various forms of cybercrime, such as business email compromises.

Many interviewed accountants described how they carefully reviewed email content and attachments, verified the legitimacy of senders, and checked domain names to prevent fraud. They also reported confirming details with email contacts before taking action.

Beyond emails, accountants controlled access to sensitive systems and data. For example, interviewees said their jobs involved ensuring only authorised employees had access to financial records or payroll systems.

By integrating cybersecurity practices into their daily work, accountants helped reduce the risk of cybercrime.

Architects

Accountants didn’t just protect data – they helped strengthen cybersecurity through strategic decisions.

According to our interviewees, accountants often worked with their organisation’s IT team to decide on cybersecurity investments. Using their financial expertise, accountants conducted cost-benefit analyses to ensure limited budgets are spent wisely.

Additionally, they played a crucial role in strengthening cybersecurity by making strategic decisions in areas such as risk identification, risk management strategies, risk coverage and premiums for cyber insurance.

Cyber insurance[5] helps cover costs such as fixing systems, notifying customers about the breach and even dealing with legal claims.

As one research participant explained, accountants can assist the business leadership in answering crucial questions posed by insurers. These can include queries such as:

What risk you are trying to mitigate? And what sort of risk management you have for cyber security. What kind of risk management in cybersecurity have you got? Have you got proper encryption and do you know whether it is hardware or software encryption?

Data gardeners.

Accountants play a key role in helping organisations develop data policies. These policies establish rules and guidelines for managing data, such as how long to retain information, how to protect it and when to delete it.

Why is this important? Retaining unnecessary data increases the risk of a data breach.

Accountants leverage their financial expertise to demonstrate how reducing stored data can minimise risks while still retaining valuable information. For example, they might recommend deleting outdated payroll records or customer data that no longer serve a business purpose.

Importantly, data policies also help organisations comply with privacy and data security regulations, which are becoming increasingly strict across Australia[6] and New Zealand[7].

Staying vigilent

As cybercrime evolves, accountants must stay up to date. Interviewees recommended several ways to do this, including participating in training courses, forums and seminars.

Courses on cybersecurity, programming and emerging technologies like artificial intelligence (AI) were highlighted as particularly valuable. These courses help accountants better understand how to manage systems, protect data and respond to new forms of cybercrime.

In-house training tailored to accounting and finance teams is also crucial. Simulated cyberattacks – like phishing emails or fake invoice fraud – help accountants recognise and respond to threats in real-world scenarios.

To remain effective in this changing landscape, accountants need to keep learning. By building their technical knowledge and participating in tailored training, they can continue to protect their organisations from the ever-evolving world of cyber threats.

References

  1. ^ average cost of a single cybercrime report (www.exportfinance.gov.au)
  2. ^ direct financial losses from cybercrime (www.cert.govt.nz)
  3. ^ general guidance on cybersecurity (www.cyber.gov.au)
  4. ^ research (www.aicpa-cima.com)
  5. ^ Cyber insurance (www.aicpa-cima.com)
  6. ^ Australia (www.oaic.gov.au)
  7. ^ New Zealand (www.privacy.org.nz)

Authors: Zhongtian Li, Senior Lecturer, Business School, University of Newcastle

Read more https://theconversation.com/from-bean-counters-to-cyber-sleuths-how-accountants-are-a-frontline-defence-against-online-crime-243457

Minns Labor Government shutting down the Business Connect program

The NSW Opposition is concerned that the Labor government will shut down a support program that has assisted New South Wales businesses. In a media ...

Samsara Eco appoints Dr. Lars Kissau as General Manager for Asia

Australian biotech innovator Samsara Eco has announced the appointment of Dr Lars Kissau as its first General Manager of Asia. Based in Singapore...

From the first bounce to the final siren - small business lessons from the AFL Grand Final

The AFL Grand Final is one of the most anticipated days on the sporting calendar. This Saturday, the Geelong Cats and Brisbane Lions will battle i...

Australia’s top finance leaders recognised as CFO role expands

Amid surging regulatory demands and rapidly evolving industry, Australia’s most influential Chief Financial Officers will be honoured at the inaug...

Why outdated security leaves small businesses exposed to crime

Small and medium businesses in Australia are under increasing pressure to address security gaps that criminals readily exploit. An unlocked door, an...

Why it’s time telcos rethink location and put customer experience first

Maurice Zicman, Vice President - CX Strategy at TP in Australia unpacks why the telco industry must rethink old assumptions and focus on digital-f...