This statement may shock IT, GRC, and Cybersecurity professionals, but we all work in an unregulated
profession and often cannot be accountable for our actions, unlike professions in mature disciplines like healthcare and accounting. Before you disagree with this statement, take time to observe the excerpts from an international study called: Creating the Next Generation Cybersecurity Auditor.
https://www.cyberdefensemagazine.com/newsletters/august-2022/mobile/index.html#p=82