Internal auditors can play an important role in identifying risks and data protection gaps, which is critical for any organization. In addition, internal auditors can ensure those identified vulnerabilities are being properly addressed and highlight necessary issues to executives and the board of directors. Richard F. Chambers, president and CEO of The Institute of Internal Auditors, spoke with the Cybersecurity Law Report about how internal auditors can enhance an organization’s cybersecurity program, including assessing risk, identifying areas of focus and communicating to the board and management about how effectively that risk can be managed. See “Using a Risk Assessment as a Critical Component of a Robust Cybersecurity Program (Part One of Two)” (Nov. 16, 2016); Part Two (Nov. 30, 2016).