Now Available!
Join Us On LinkedIn
Join the Cybersecurity and Incident Response Group on LinkedInTo Prove Cybersecurity’s Worth, Create a Cyber Balance Sheet
Using financial modeling, companies can adopt approaches for estimating both the direct and hidden intangible costs associated with cyber-risk and express those risks in traditional financial terms. These models should be based on industry-accepted frameworks (e.g., FAIR, NIST, etc.). A cyber balance sheet incorporates these financial models and related tools to gauge the impact differential […]
What the Capital One Hack Means for Boards of Directors | LinkedIn
Undoubtedly, upon learning of the Capital One hack, corporate board members across the U.S. are likely struck by one immediate thought (there but for the grace of God go I) and one immediate question (What should I do now?). This article tackles the issue of third party digital risk management head-on, by offering a useful and comprehensive strategical […]
Cyber Lessons and #MeToo Risk
Five years ago, when the reality of the cyber security threat began reaching the boardroom and audit and risk committees, only 15 percent of directors felt “very confident” their board oversaw cyber risk adequately. Today, cyber security preparedness and investments are front and center for directors. Increasingly, they are overseeing cyber security as a function […]
Guest Post: Claims Against Directors for Failure to Insure Against Cyber Risk Are More Likely Now | The D&O Diary
You would think that if a company was found both by the relevant regulatory authorities and by the courts to have taken all reasonable steps to protect personal data, it would have a complete answer to a data breach claim. Not so. That was the surprising (to some) outcome of a recent Court of Appeal […]
Cybersecurity: Five Guiding Principles for Boards – Lexology
The NACD provides five helpful guiding principles for effective cyber-risk oversight that organizations can adopt and customize to their specific needs (e.g., size, life-cycle stage, strategy, business plans, industry sector, geographic footprint, etc.). via Cybersecurity: Five Guiding Principles for Boards – Lexology
Boards to Focus on Cybersecurity in 2018.
Cybersecurity will be the hottest topic for boards of directors this year, according to the latest annual list from law firm Akin Gump Strauss Hauer & Feld. The “winner” was not much of a surprise, given that 2017 was riddled with high-profile attacks, including those targeting Equifax, Uber, Yahoo, and the U.S. Securities and Exchange Commission. “No crisis […]
Equifax: A Category 5 Cybersecurity Crisis Storm. Chances Are It Will Hit You — Forbes
From a tepid apology from CEO Richard Smith — totally incommensurate with the size of the crisis: “This is clearly a disappointing event for our company, and one that strikes at the heart of who we are and what we do. I apologize to consumers and our business customers for the concern and frustration this […]
Top Cybersecurity Concerns for Every Board of Directors: Data Mapping and Encryption — Nasdaq Governance Clearinghouse
This final part of the series Top Cybersecurity Concerns for Every Board of Directors discusses the board’s oversight responsibilities with respect to two of the largest enterprise undertakings in the field of cybersecurity: data mapping and encryption. via Top Cybersecurity Concerns for Every Board of Directors: Data Mapping and Encryption — Nasdaq Governance Clearinghouse
Cybersecurity And The Board — Forbes
Data breaches. First, they were the concerns of CISOs and CIOs. Some even lost their jobs after overmediatized breaches. Then CEOs got the spotlight, especially as brand reputations were damaged and customers left angry and churning. Today, board members are increasingly more involved in discussions around companies’ cybersecurity and measures needed to prevent being thrown […]
Cybersecurity Trends for Boards of Directors | JDSupra
Cybersecurity has in recent years become an integral component of a board’s role in risk oversight, but directors often find themselves in unfamiliar territory when it comes to formulating policies and oversight processes that address cybersecurity risk. It can be especially challenging for directors to identify upcoming risks and avoid focusing too much on yesterday’s […]
Change In Corporate Mindset Needed To Combat Cybersecurity — Forbes
“Is the CEO and the board committed to cybersecurity or is it just another line item that will get funded, but without the personal leadership that’s required?” asks Jim Trainor, senior VP for Aon Risk Solutions and former assistant director for the cyber division at the Federal Bureau of Investigation (FBI). When it comes to […]
Top Cybersecurity Concerns for Every Board of Directors: People — Nasdaq Governance Clearinghouse
Companies can invest heavily in top-of-the-line security software and state-of the-art systems, but without the proper approach toward their IT employees, those efforts will be for naught. This article focuses on a board’s cybersecurity oversight pertaining to a company’s most important cybersecurity resource (and threat): its employees. Given the tumultuous risk associated with cyber-attacks, boards […]
Top Cybersecurity Concerns for Every Board of Directors: Cybersecurity Governance — Nasdaq
In the aftermath of a corporate cyber-attack, boards and the companies they govern are subjected to immediate public scrutiny and, in many cases, unwarranted criticism. This new cyber-reality has essentially removed the distinction between board member and IT executive, with cybersecurity emerging as a key corporate risk area. For corporations, this is the dawning of […]
How to attract a board-level cybersecurity expert | CSO Online
How can companies put their best security foot forward to attract top cybersecurity talent to the board? Companies often don’t look at their own cyber track record and vision for their security future before starting the interview process. Board advisers and cybersecurity pros offer five points to consider before interviewing a cybersecurity expert for the […]
Cyber Defense in the Boardroom: Leveraging the Financial Oversight Paradigm — Nasdaq Governance Clearinghouse
Hardly a day goes by in legal and consultant circles when some expert somewhere is not opining on the need for corporate boards to bring a greater sense of urgency to address the growing business risk of cyber-attacks. Yet, even the most experienced commentators are underestimating the threat of cyber-attacks, and—even more importantly—overlooking a glaring […]