Cyber Questions Directors Should Ask CIOs (£)

Uploaded on 2016-02-15 in Directors Reports

The cyber pressure on Directors and Boards is increasing as the hack attacks increase. This process is not going to stop in the medium term and understanding of your responsibility and improving your own comprehension of the cyber risks and the digital opportunities is extremely important.

This piece discusses the questions and understanding that Boards should discuss to get a clearer comprehension of where their organisation stands on cyber and digital security and progressive technology.

Strategic Cyber Questions

First question to ask yourself as a Board Director what understanding do you have about the cyber security and the digital technology that your organisation is using and is connected to?

Have you been on a course giving you cyber background and if so how often have you had an up-dated course – keeping you currently savvy in the IT area is very important. There are still ongoing arguments such as whether cyber risks should be a full-Board issue or delegated to an audit or risk committee but the real point is to ensure that the Board is fully aware of the strategic, security, the opportunistic areas and potential that your market and your business is cybered in.  

What amount of time has your Board given to cyber issues but unless you as a Director have a clear understanding of your own organisation’s risks, opportunities and developments in the area you will be out in the cold when hacks take down your systems and electronics changes your market-space.

On the security side for instance, does your IT Director or Chief Information Officer (CIO) have a CISO (Chief Information Security Officer), reporting to him/her and does that person present to the Board?

How often does the Board and CEO get cyber briefings and are these restricted to security as there should also be opportunistic cyber briefings from IT and marketing. This should focus on the changing electronic elements of the market, clients and cyber analysis that could give a clearer picture of for instance the new areas of competition.

What are your responsibilities when it comes to explaining to your shareholders as to your cyber capabilities and the breath of understanding the company has for its cyber-security programme.

« Education: Introvert Personalities Go Mobile & Online
Board Questions To The CIO (£) »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Conscio Technologies

Conscio Technologies

Conscio Technologies is a specialist in IT security awareness. Our solutions allow you to easily manage innovative online IT awareness campaigns.

Internet Security Alliance (ISA)

Internet Security Alliance (ISA)

ISA is an international trade association providing thought leadership in advancing a sustainable system of cyber security.

Oppida

Oppida

Oppida provides tailored IT security services to help you identify security gaps and assist in finding the most effective remediation.

SentinelOne

SentinelOne

SentinelOne is a pioneer in delivering autonomous security for the endpoint, datacenter and cloud environments to help organizations secure their assets with speed and simplicity.

Adroit Technologies

Adroit Technologies

Adroit Technologies has been developing award winning real-time software for the industrial automation markets for over 25 years.

Center for Identity - University of Texas at Austin

Center for Identity - University of Texas at Austin

The mission of the Center is to deliver the highest-quality discoveries, applications, education, and outreach for excellence in identity management, privacy, and security.

Invensis Learning

Invensis Learning

Invensis Learning is a professional training and certification company providing IT Service Management, IT Security & Governance, DevOps, Cloud Computing and Digital Awareness training.

Sikur

Sikur

Sikur have developed a communication platform that sets new boundaries for corporate privacy and security.

ITRecycla

ITRecycla

ITRecycla are specialists in the protection of sensitive computer data by data destruction, re-marketing of reusable computer equipment, computer recycling and disposing of electronic e-waste.

2Keys

2Keys

2Keys designs, deploys and operates Digital Identity Platforms and Cyber Security Platforms through Managed Service and Professional Service engagements.

TechForing Ltd.

TechForing Ltd.

TechForing Ltd. works for business organization's cyber security and cyber crime incident managements. We help business to secure their business online.

CyberSheath Services International

CyberSheath Services International

CyberSheath integrates your compliance and threat mitigation efforts and eliminates redundant security practices that don’t improve and in fact might probably weaken your security posture.

NSR

NSR

NSR provide trusted solutions that deliver positive business outcomes for our clients in cybersecurity and data protection challenges.

Auvik Networks

Auvik Networks

Auvik is easy-to-use cloud-based networking management and monitoring software - true network visibility and control without the hassle.

South West Cyber Resilience Centre (SWCRC)

South West Cyber Resilience Centre (SWCRC)

The South West Cyber Resilience Centre (SWCRC) is led by serving police officers, as part of a not-for-profit partnership with business and academia.

Qeros

Qeros

Qeros is a next-generation distributed system enables secure data and transaction processing at the velocity of thought.