2025, Vol. 6, Special Issue 3

The accounting profession is changing rapidly as digital innovations shape how financial data is created, processed, and secured. While moving from manual bookkeeping and ledger reporting to software-based environments like Excel, enterprise resource planning (ERP) systems, and cloud environments has improved efficiency and accuracy, it has also introduced considerable cyber security risks. As accountants work with sensitive financial data, they are likely targets for cyber incidents from ransomware, phishing, illicit access, and data breaches. Although existing literature points to values of technologies like AI, block chain, cloud computing, and data analytics across the professional accounting landscape, research investigating the impacts of these systems on cyber security preparedness and resilience is lacking. There are key gaps related to process towards organizations understanding how accounting firms select, adopt and implement cyber security frameworks; how firms resolve skill deficits among their staff; and human factors with regard to behaviors and attitudes which can heighten cyber risk exposure. This study will apply a mixed-methods methodology implementing a combination of quantitative surveys and qualitative interviews. Auditors, chartered accountants, cost accountants and CPAs in a developing economy were purposively sampled through Google Forms and semi-structured interviews.

The quantitative portion measures the frequency of digital tools and the maturity of cyber security practices, while the qualitative portion examines lived experience of adopting digital technology, perceived vulnerabilities, and obstacles to adoption. Preliminary results indicate that while there has been an increase in AI and block chain adoption for audit efficiencies, fraud detection, and regulatory requirements, there has not been an adequate alignment of cyber security with employing those technologies. In fact, the study indicates that fraud reduction results become much better when AI is applied with maturity in applying cyber security practices. Large firms have reported as much as 25% speed up on audits because of AI. Human factors continue to be at risk: not many practitioners have sufficient cyber security awareness; and small to medium enterprises may not have the policies updated due to operating under tight budgets. Compliance with laws and regulations adds further strain on resources when you consider that laws and regulations change, staff training has to keep up - the practice doesn't have sufficient funds to adequately respond. In light of these findings, this study recommends the following: zero trust architecture, multi factor authentication, encryption strength (TLS 1.3, AES 256), annual penetration testing, employing AI for anomaly detection, clear written information security policy document, employee cyber security awareness training, vet third party integrations with the same cyber security standards, and to have clearly delineated incident response plans.