The UK National Cyber Security Centre (NCSC) says that Board members ‘need to get a little bit technical if they are to understand and manage the risks they face’ and has published a five-question checklist to assist.
NCSC also emphasises that boards cannot outsource their cyber security risks and need to understand what their technical staff are doing if they are to ‘prosper securely in the digital age’.
When launching the checklist, Ciaran Martin, chief executive of the NCSC, said:
“Cyber security is now a mainstream business risk. So corporate leaders need to understand what threats are out there, and what the most effective ways are of managing the risks.
“But to have the plain English, business focussed discussions at board level, board members need to get a little bit technical. They need to understand cyber risk in the same way they understand financial risk, or health and safety risk.
More of the Continuity Central post