Scott M. McAuliffe, CPA, CISA, CFE

Scott has almost 20 years of experience in public accounting, creating opportunities and providing risk advisory services to clients in the utility, manufacturing, retail, and financial services industries. He leads the Firm’s Risk Advisory Services practice, which focuses on providing internal audits, information technology audits, Sarbanes-Oxley assistance and Service Organization Control (SOC) audits. Scott focuses […]

Cybersecurity Act of 2015

Author: Scott McAuliffe, CPA, CISA, CFE As I awake each day and read through the morning headlines, it seems a day does not pass without a cybersecurity incident being mentioned. In December, Congress passed the Cybersecurity Act of 2015 . The goal of the Act is to encourage companies and the U.S. government to share […]

FFIEC Releases Final Guidance on Social Media Risks

Author: Scott McAuliffe, CPA, CISA, CFE On December 13, 2013, the Federal Financial Institutions Examination Council (FFIEC) released final guidance, effective immediately, on the applicability of consumer protection and compliance laws, regulations, and policies to activities conducted via social media.  It is important to note that the guidance was intended to help financial institutions understand […]

Tips for Banks Considering Implementing an ERM Program

Author: Scott McAuliffe, CPA, CISA, CFE Source: Sageworks Over the last year, I’m hearing more and more Bankers indicate that their Examiners are asking about the Bank’s ERM program.  Bankers have a long history of performing risk assessments but have not necessarily incorporated them all together into an ERM program. Here is a good article […]

Changes to SAS 70 Auditing Standard

This blog is a re-posting from June 2010 SAS 70 is an auditing standard put forth by the AICPA that is utilized by auditors for examining internal controls in service organizations. Service organizations include: business process outsourcing (payroll, general accounting), data centers, outsourced IT functions, software providers, claim processors, benefit plan administrators, trust administrators, investment […]

Data Breach – It Can Happen to You!

By Scott M. McAuliffe, CPA, CISA, CFE | Risk Advisory Services Partner | Cybersecurity Services Team It seems on a daily basis, we hear about large companies, such as Yahoo, LinkedIn, Oracle, and Dropbox that have suffered a significant data breach. When seeing these headlines, most small- and mid-size businesses probably think that it will not […]

Why Emerging Businesses Need to be Concerned with Cybersecurity

By Scott M. McAuliffe, CPA, CISA, CFE, Partner Risk Advisory Services | Emerging Business Team In early April, Verizon released its annual Data Breach Investigation Report (2015 Data Breach Investigation Report). In reviewing the report, it’s clear that data breaches are happening to more and more companies — big and small. Highlighted below are some report findings that I […]

Getting Familiar with the Updated COSO Framework

Author: Scott M. McAuliffe, CPA, CISA, CFE Risk Advisory Services Partner In case you missed it, in May 2013, the Committee of Sponsoring Organizations of the Treadway Commission (COSO) released an updated version of its Internal Control – Integrated Framework (Framework). COSO updated its framework to provide better clarity and reflect changes in business and […]

Best Practices for Manufacturers

Author: Scott M. McAuliffe, CPA, CISA, CFE Companies are always looking for ways to improve controls and operational efficiencies with limited resources. As such, the majority of companies that we work with have segregation of duties concerns that have to be mitigated cost effectively. The following article includes the six best practices that manufacturers should implement to […]


How Can We Help You and Your Business?

Innsbrook Corporate Center
4401 Dominion Boulevard
Glen Allen, Virginia 23060

804.747.0000 or 804.273.6200