The UK’s leading cybersecurity agency has urged the country’s business leaders to ‘get on top’ of cyber risks after releasing an updated toolkit to help them do so.
GCHQ’s National Cyber Security Center (NCSC) says the updated Cyber Security Board Toolkit is designed to increase senior executive confidence when discussing security with key stakeholders in the organization. said.
Given that a breach could severely impact business operations and growth, the agency hopes that boards will treat cyber risk with the same urgency as other business risks in areas such as finance and law. I’m here.
To learn more about NCSC resources, NCSC is announcing two new tools for small businesses.
The revised toolkit includes:
- Information outlining the benefits of strong cybersecurity
- Activities and success metrics essential for an organization to perform
- New video summarizing key concepts
- A podcast with industry-leading voices
- A case study of how the toolkit helped organizations like the charity Water Aid improve their security posture
- A real C-level insight into what ransomware looks like
NCSC CEO Lindy Cameron warns:
“I encourage all CEOs, board members and senior executives to read the Toolkit and use it to advance the cybersecurity conversations they need to keep their organizations safe online.”
The news was also welcomed by the US Cybersecurity and Infrastructure Security Agency (CISA) at the time. Its director, Jen Easterly, argued that how boards determine cybersecurity priorities needs to evolve.
“Together, we need to catalyze a new model of sustainable cybersecurity, starting with a commitment at the board level to encourage a culture of corporate cyber responsibility in which cyber risk management is treated as a cornerstone of good governance. There is,” she added.
“Global companies based in the US and UK understand that cybersecurity is a transnational issue. This toolkit will help them hold accountable for their cybersecurity decisions. It will be an invaluable resource that will ultimately raise the collective cybersecurity baseline for all of us.”
But research shows that senior executives still have a long way to go before they fully understand cybersecurity.
A recent Trend Micro survey found that 51% of business leaders believe cybersecurity is a necessary cost but does not contribute to bottom line, and 48% claim its value is limited to threat prevention. and two-fifths (38%) see security as a barrier. rather than a business enabler.
