By Editor|2021-08-31T09:19:17+00:00August 31st, 2021|Comments Off on Over Board: How the board of directors should be involved in incident response

Over Board: How the board of directors should be involved in incident response

As successful cyberattacks continue to make the news, with devastating consequences for the hacked companies, the importance of organization’s board of directors in prioritizing proper security is becoming increasingly obvious. While IT and security departments can handle details of implementation, it is the role of the board to handle the paired responsibilities of strategy and risk management, which in the current environment requires at least a high level understanding of the importance, role, and approaches for cybersecurity, according to an article in Reuters.

To ensure the board is in the best position to support this, members should be:

  • Educated on the types of cybersecurity risks, in terms of threats, damage, and exposure
  • Informed of key and critical information assets, including access and location
  • Granted time to discuss cybersecurity issues
  • Kept abreast of legal obligations related to cyber threats and protection of customer data
  • Briefed on incident response plans and testing

Source:

https://www.reuters.com/legal/legalindustry/what-boards-directors-need-know-about-cyber-incident-response-2021-08-18/ 

Share This Story, Choose Your Platform!

About the Author: Editor