Back to Explorer
Research PaperResearchia:202603.24010[Computer Science > Cybersecurity]

Framework for Risk-Based IoT Cybersecurity Audit Engagements

Danielle Hanson

Abstract

The use of Internet of Things (IoT) devices is growing at a rapid rate. While much of this growth is consumer devices, IoT devices are also commonly found in corporate and industrial environments, as well. These devices can be organization-owned and managed by an information technology unit, deployed organizationally without the knowledge and involvement of technology staff or brought in to the corporate environment by user-owners. In each case, these devices may have access to corporate networks and data and are, thus, important to consider as part of organizational cybersecurity risk assessment. Despite the prevalence of these devices, there is little literature about how to audit their security. This paper presents a risk-based auditing framework which can be used by both internal and external auditors, of any experience level and in any industry, to assess IoT devices.

Source: arXiv:2603.22191v1 - http://arxiv.org/abs/2603.22191v1 PDF: https://arxiv.org/pdf/2603.22191v1 Original Link: http://arxiv.org/abs/2603.22191v1

Submission:3/24/2026
Comments:0 comments
Subjects:Cybersecurity; Computer Science
Cite as:
Researchia:202603.24010https://www.researchia.net/explorer/b5efc772-acc5-4c4e-bc22-57988be99a72
Original Source:
View Original PDF
arXiv: This paper is hosted on arXiv, an open-access repository
Was this helpful?

Discussion (0)

Please sign in to join the discussion.

No comments yet. Be the first to share your thoughts!