Five questions for boards to get on their agenda

To be a company director you are expected to ask the right questions of the right executives in the company, and understand the answers so you can challenge them if they don’t sound right. You need to do that in cyber security too.
Ciaran Martin, NCSC CEO, CBI Cyber Security Conference, 12 September 2018

Cyber literacy in the board room is as important as financial literacy.

However, in our conversations with business leaders it is clear that one of the most common and persistent misconceptions is that cyber security is a complex subject.

CISOs and technical teams are one of the greatest assets any organisation has, and their role in improving your knowledge of relevant cyber security issues shouldn’t be underestimated. For this reason, the NCSC have worked to identify a range of questions which we believe will help generate the right discussions between board members and their CISOs and, importantly, increase awareness of key topics in cyber security.

To help start the conversation within your organisation, we are publishing five of these questions with some elements you would look for in a response. The questions are not designed to try and catch CISOs or technical teams out. Rather, we want to open up the discussion about what your organisation is doing to get the cyber security basics right. We hope that by asking these questions, anything blocking those basics (for example a wider organisational policy) will be brought to the surface and addressed. Obviously, these are not the only questions to ask and nor are the possible answers exhaustive, but they illustrate the types of things which are important, and the reasons why.

Later this year we will be publishing a board toolkit. Part of that will include a broader set of questions. So we are really keen to hear your feedback on the questions published today. If you have any experiences to share on how you have approached these topics within your organisations, please do get in touch.

Finally, thank you to all those who have already been in touch over the summer to help with testing elements of the full toolkit. We will be in touch towards the end of September to seek your views as we start testing further content.

Sarah L
Deputy Director, Economy and Society

Source: National Cyber Security Centre

With over 20 years of experience, Serviceteam IT design and deliver sophisticated connectivity, communication, continuity, and cloud services, for organisations that need to stay connected 24/7. We take the time to fully understand your current challenges, and provide a solution that gives you a clear understanding of what you are purchasing and the benefits it will bring you.

To find out how we can help you, call us on 0121 468 0101, use the Contact Us form, or why not drop in and visit us at 49 Frederick Road, Edgbaston, Birmingham, B15 1HN.

We’d love to hear from you!

/by
You might also like
Serviceteam IT Security News Outsourcer Interserve fined £4.4m for failing to stop cyber-attack
Serviceteam IT Security News Electoral Commission apologises for security breach involving UK voters’ data
Serviceteam IT Security News Attackers Use Microsoft Office Vulnerabilities to Spread Zyklon Malware
Serviceteam IT Security News Flaw in Google Bug Tracker Exposed Reports About Unpatched Vulnerabilities
Serviceteam IT Security News Rhysida, the new ransomware gang behind British Library cyber-attack
Serviceteam IT Security News Nissan Canada Finance Notifies 1.1 Million of Data Breach