We have to find a way to communicate cyber risk to the Board.
Role of the Board • “to oversee management and to advise management” • “… an overarching and strategic vantage point to ensure the long-term prosperity and survivability of the enterprise.” • “… a legal responsibility to provide effective governance oversight, to ensure that the enterprise is well managed and to provide reasonable protections to its customers, employees, shareholders and business partners (duty of care)”
How that manifests
• Management (C-Level) • Approve Strategy • Approve Budgets • Capital • Operating (FTE’s) • Manage Risk • Competition • Market • Legal • Set the Risk Appetite
The National Association of Corporate Directors (NACD)
Made with FlippingBook - Online catalogs