Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

7 cyber security questions for boards

44,691 views

Published on

The cyber security job is everyone's business including the Board of Directors, even without a cyber security degree. Recent cyber security news proves that. According to several studies, Boards are getting it wrong and are leaving cyber awareness and risk management in the hands of the CEO, CISO, CTOs and cyber security companies. In a sense they are abdicating their responsibility to the shareholders. This slideshare proposes 7 questions every board should be asking their company executives abour IT security. They're not necessarily all encompassing and don't take the place of real cybersecurity training, but will drive the discussion to better and more complete understanding of strategic risk. Questions cover the basics of cyber security training, cyber policies, who briefs and when at board meetings. Thanks.

Published in: Business
  • DOWNLOAD THAT BOOKS INTO AVAILABLE FORMAT (2019 Update) ......................................................................................................................... ......................................................................................................................... Download Full PDF EBOOK here { https://urlzs.com/UABbn } ......................................................................................................................... Download Full EPUB Ebook here { https://urlzs.com/UABbn } ......................................................................................................................... Download Full doc Ebook here { https://urlzs.com/UABbn } ......................................................................................................................... Download PDF EBOOK here { https://urlzs.com/UABbn } ......................................................................................................................... Download EPUB Ebook here { https://urlzs.com/UABbn } ......................................................................................................................... Download doc Ebook here { https://urlzs.com/UABbn } ......................................................................................................................... ......................................................................................................................... ................................................................................................................................... eBook is an electronic version of a traditional print book that can be read by using a personal computer or by using an eBook reader. (An eBook reader can be a software application for use on a computer such as Microsoft's free Reader application, or a book-sized computer that is used solely as a reading device such as Nuvomedia's Rocket eBook.) Users can purchase an eBook on diskette or CD, but the most popular method of getting an eBook is to purchase a downloadable file of the eBook (or other reading material) from a Web site (such as Barnes and Noble) to be read from the user's computer or reading device. Generally, an eBook can be downloaded in five minutes or less ......................................................................................................................... .............. Browse by Genre Available eBooks .............................................................................................................................. Art, Biography, Business, Chick Lit, Children's, Christian, Classics, Comics, Contemporary, Cookbooks, Manga, Memoir, Music, Mystery, Non Fiction, Paranormal, Philosophy, Poetry, Psychology, Religion, Romance, Science, Science Fiction, Self Help, Suspense, Spirituality, Sports, Thriller, Travel, Young Adult, Crime, Ebooks, Fantasy, Fiction, Graphic Novels, Historical Fiction, History, Horror, Humor And Comedy, ......................................................................................................................... ......................................................................................................................... .....BEST SELLER FOR EBOOK RECOMMEND............................................................. ......................................................................................................................... Blowout: Corrupted Democracy, Rogue State Russia, and the Richest, Most Destructive Industry on Earth,-- The Ride of a Lifetime: Lessons Learned from 15 Years as CEO of the Walt Disney Company,-- Call Sign Chaos: Learning to Lead,-- StrengthsFinder 2.0,-- Stillness Is the Key,-- She Said: Breaking the Sexual Harassment Story That Helped Ignite a Movement,-- Atomic Habits: An Easy & Proven Way to Build Good Habits & Break Bad Ones,-- Everything Is Figureoutable,-- What It Takes: Lessons in the Pursuit of Excellence,-- Rich Dad Poor Dad: What the Rich Teach Their Kids About Money That the Poor and Middle Class Do Not!,-- The Total Money Makeover: Classic Edition: A Proven Plan for Financial Fitness,-- Shut Up and Listen!: Hard Business Truths that Will Help You Succeed, ......................................................................................................................... .........................................................................................................................
       Reply 
    Are you sure you want to  Yes  No
    Your message goes here

7 cyber security questions for boards

  1. 1. Cyber security questions for boards7 ???????
  2. 2. risk oversight is a function of the full Board…yet NACD  DIRECTOR’S  HANDBOOK  SERIES  2014  EDITION  
  3. 3. Did you know 50% OF BOARDS SEE Cyber Security AS AN I.T. ISSUE? PWC:  US  cybersecurity:  Progress  stalled,  Key  findings  from  the  2015  US  State  of  Cybercrime  Survey
  4. 4. That means 50% Are doing it wrong PWC:  US  cybersecurity:  Progress  stalled,  Key  findings  from  the  2015  US  State  of  Cybercrime  Survey
  5. 5. full Board involved in cyber risks =25% Good PWC:  US  cybersecurity:  Progress  stalled,  Key  findings  from  the  2015  US  State  of  Cybercrime  Survey
  6. 6. no Board INVOLVEMENT in cyber risks =30% Bad PWC:  US  cybersecurity:  Progress  stalled,  Key  findings  from  the  2015  US  State  of  Cybercrime  Survey
  7. 7. 26% OF BOARDS SAY CISO or CSO makes a presentation to the Board once a year UGLY PWC:  US  cybersecurity:  Progress  stalled,  Key  findings  from  the  2015  US  State  of  Cybercrime  Survey
  8. 8. 28% SAY their security leaders make no presentations at all. UGLIER PWC:  US  cybersecurity:  Progress  stalled,  Key  findings  from  the  2015  US  State  of  Cybercrime  Survey
  9. 9. What about 3rd Party vendors? PWC:  US  cybersecurity:  Progress  stalled,  Key  findings  from  the  2015  US  State  of  Cybercrime  Survey
  10. 10. 23% do not evaluate 3rd parties - that number is probably much higher PWC:  US  cybersecurity:  Progress  stalled,  Key  findings  from  the  2015  US  State  of  Cybercrime  Survey
  11. 11. cyber training is neglected KPMG Poll
  12. 12. only 50% of EMPLOYEES RECEIVE PERIODIC cyber TRAINING PWC:  US  cybersecurity:  Progress  stalled,  Key  findings  from  the  2015  US  State  of  Cybercrime  Survey
  13. 13. PWC:  US  cybersecurity:  Progress  stalled,  Key  findings  from  the  2015  US  State  of  Cybercrime  Survey only 50% of EMPLOYEES RECEIVE Initial cyber TRAINING
  14. 14. Cyber Security’s biggest obstacle? Cyberedge Group 2016 report
  15. 15. Low security awareness among employees Cyberedge Group 2016 report
  16. 16. So here are the 7 questions
  17. 17. How are key business processes affected by different types of cyber attacks? (i.e. Ransom ware, Denial of service, Data breach, etc) 1
  18. 18. Leads to discussion on what type of cyber security we have and why 1
  19. 19. Is our physical security adequate & is it congruent with our cyber security? 2
  20. 20. the two are interrelated NACD  DIRECTOR’S  HANDBOOK  SERIES  2014  EDITION   2
  21. 21. who are our 3rd party vendors? 3
  22. 22. and what risks do they pose? 3
  23. 23. who is responsible for cyber security training? 4
  24. 24. HR, IT, CISO, etc? 4
  25. 25. Have officers and directors received cyber security / information assurance training? 5
  26. 26. these are high profile, high risk positions 5
  27. 27. how do we vet our administrators? 6
  28. 28. snowden was a contractor…just saying 6
  29. 29. who’s working for you? 6
  30. 30. who does the ciso report to and why? 7
  31. 31. Cyber security questions for boards7 1. How are key business processes affected by different types of cyber attacks? 2. Is our physical security congruent with our cyber security? 3. who are our third party vendors? 4. who is responsible for cyber security training? 5. have officers and directors received cyber security training? 6. How do we vet our administrators? 7. Who does the ciso report to? www.paulmcgillicuddy.com
  32. 32. Share please

×