Cyber Security Governance Is A Leadership Responsibility

Uploaded on 2024-03-19 in TECHNOLOGY--Resilience, FREE TO VIEW

As cyber threats evolve, boards must remain vigilant in cyber security governance says the British National Cyber Security CentreUnderstanding threat and managing cyber risk are crucial for effective cyber security governance, and boards play a critical role in ensuring this.

Not only do boards carry the legal responsibility and accountability for cyber governance within their organisation, they also have the opportunity to harness the benefits that technology offers, drive their company's agenda, and deliver real value throughout the organisation.

The NCSC has released a new video in which  Paul Chichester, the NCSC’s Director of Operations and Tasha Grayson, Deputy Director of NCSC Assessment, discuss the general threats that organisations face in the evolving cyber landscape. 

They highlight the importance of board-level involvement in making informed cyber security decisions enabling boards to not only protect their organisation, but to also exploit the opportunities that technology brings.

Cyber Governance Training Pack for Boards

In the coming year, the NCSC is committed to developing a comprehensive and interactive online 'Cyber Governance Training Pack' for Boards. This will provide boards with valuable knowledge and practical guidance to enhance their understanding of cyber security governance.

The training will complement the Department of Science, Technology, and Innovation’s (DSIT) proposed Cyber Governance Code of Practice . The NCSC training Pack will include these elements: 

  • Code of Practice:   Aimed at executive and non-executive directors (and other senior leaders), sets out key actions to take to strengthen their cyber resilience and governance regarding cyber risk.
  • Cyber Security Toolkit for Boards:  The NCSC provides guidance on how to implement the actions the outlined in the Code.

As cyber threats evolve, boards must remain vigilant in cyber security governance. Our video, Board Toolkit, and upcoming training empower boards to understand risks and provide effective governance. We will update you on our progress later in the year. Keep an eye out for further announcements.

The NCSC is calling for  feedback and are open to suggestions on how we can improve our resources for board members. If you have any comments or questions, please get in touch HERE

National Cyber Security Centre     |     National Cyber Security Centre     |     UK Government

Image: Unsplash

You Might Also Read: 

A “Whole-of-Society" Approach To Cyber Crime:

DIRECTORY OF SUPPLIERS - Governance, Risk & Compliance:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Malawi's Passport System Breached
Microsoft Going Large On AI & Cloud Computing »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Security Industry Association (SIA)

Security Industry Association (SIA)

The SIA's mission is to be a catalyst for success​ within the global security industry through information, insight and influence.

Exprivia

Exprivia

Exprivia is active in the design, development and integration of IT systems including cyber security.

Clari5

Clari5

Clari5 redefines real-time, cross channel banking Enterprise Fraud Management using a central nervous system approach to fight financial crime.

CTM360

CTM360

CTM360 is a unified external security platform offering 24x7x365 Cyber Threat Management for detecting and responding to cyber threats.

Critical Insight

Critical Insight

Critical Insight provide Managed Detection and Response, Vulnerability Detection, and Consulting Services to help you secure your mission-critical systems.

HackHunter

HackHunter

HackHunter’s passive sensor network continuously monitors, detects and alerts when a malicious WiFi network and/or hacking behaviour is identified.

Passbase

Passbase

Passbase is building a full-stack identity verification engine backed by verified government documents.

Digital Fingerprints

Digital Fingerprints

Digital Fingerprints provides continuous authentication with behavioural biometrics. Protection against account takeover and session takeover. Compliant with GDPR and PSD2.

Punk Security

Punk Security

Punk Security are specialists in integrating security into DevOps pipelines, enabling rapid and secure development.

AB Handshake

AB Handshake

AB Handshake offers a game-changing solution for telecom service providers that eliminates fraud on inbound and outbound voice traffic.

IriusRisk

IriusRisk

IriusRisk is an open Threat Modeling platform that automates and supports creating threat models at design time.

Iris Powered by Generali

Iris Powered by Generali

Iris Powered by Generali is an identity theft resolution provider. Our offering combines expert assistance and support with user-friendly identity protection technology.

HADESS

HADESS

We are "Hadess", a group of cyber security experts and white hat hackers.

Doherty Associates

Doherty Associates

Drawing on our deep industry knowledge and business insight, Doherty deliver intelligent IT solutions and services that help people work more securely, more productively and more creatively.

Hubble

Hubble

Hubble grew from the idea that legacy solutions were failing to provide organizations with the asset visibility they needed to effectively secure and operate their businesses.

AmiViz

AmiViz

AmiViz is the first B2B enterprise marketplace focussed on Cybersecurity business in the Middle East and Africa, designed specially to serve the interests of enterprise resellers and vendors.