In today’s uncertain and volatile world, organisational leaders are under pressure to confidently assess and manage risk and secure their organisations against cyber threats. But how well prepared are boards to achieve this? Unlike other board governance processes that are more mature, boards don’t always feel fully informed about their true cyber risk profiles, or equipped to make the right decisions in line with their governance responsibilities.
This is partly due to the lack of accurate, timely (and by implication automated) information that communicates risk at a level which resonates with the board. Unlike audit committees and internal audit functions, for example, there is currently no principal-based guidance for board risk committees or for the second line of defence.
In this second part of the Cyber Risk Series, we continue our discussion of the current state of cyber risk, but from the viewpoint of the board. We will discuss its role in risk management, and what the CISO and IT leaders can do to overcome the lack of risk management oversight.
During this 60-minute webinar, you'll learn: