The UK’s National Cyber Security Centre (NCSC) underscores the pivotal responsibility of boardrooms in effectively managing cyber-risk within their organizations. Ahead of the launch of the Cyber Governance Training Pack for Boards, NCSC emphasizes the crucial role of decision-makers in understanding and implementing cybersecurity governance. The training pack, set to be introduced in the coming year, aims to equip board members with the requisite knowledge and practical guidance to navigate the complexities of cyber-risk management.
NCSC’s initiative aligns with the proposed Cyber Governance Code of Practice by the Department of Science, Technology, and Innovation (DSIT), currently open for public feedback until March 19th. Complemented by the NCSC Cyber Security Toolkit for Boards, these resources offer comprehensive guidance on implementing cybersecurity measures outlined in the code. NCSC Director of Operations, Paul Chichester, highlights cybercrime, ransomware, and other threats as major challenges facing organizations across industries, emphasizing the need for boards to remain vigilant and informed.
In addition to the resources provided by NCSC, Chichester suggests that boards consult open-source information and engage with industry peers to stay abreast of evolving cyber threats. While acknowledging that board members need not be experts in cybersecurity, Chichester emphasizes their role in challenging and ensuring that organizations effectively manage cyber risks. By fostering a culture of cyber-awareness and proactive risk management, boards can contribute significantly to safeguarding their organizations against cyber threats and ensuring resilience in an increasingly digital landscape.
