Facing cyber threats
Keys to security, vigilance, and resilience
The financial, operational, legal, security, and reputational risks posed by cyber threats are serious, and no organization is immune. Oversight of these threats and of their management falls squarely within directors’ governance responsibilities. With virtually all large public companies facing myriad cyber threats, how can board members best conduct that oversight?
Guarding against cyber threats should be a mindset across the entire organization, devoted to achieving security, vigilance, and resilience. As a first step to gauge vulnerabilities, directors might ask:
- How do we determine what information is leaving the organization, and how?
- What are the greatest cyber threats our organization faces?
- What are the “crown jewels” that we must protect?
- Which other data require strong protection?