DOWNLOAD THE PUBLICATION HERE
The aim of this Guide is to provide a toolkit to assist directors in understanding and keeping pace with the ever more complex cyber-related threats faced by the companies they serve. It takes the form of 12 questions designed to break a diverse set of issues down into a manageable series of topics:
- Assuming I have no particular background or experience in IT, what level of expertise with respect to cyber risk will be expected of me as a member of the board?
- As a prospective or newly appointed board member, how might I get comfort that the company’s cybersecurity systems are as robust as they need to be?
- Is there a board-level cybersecurity review blueprint or checklist I can use to ask the right questions, such as those set out in question 2?
- How might I be potentially liable if the company is the victim of a major cyberattack?
- There are a number of descriptions applied both to cyber-related dangers faced by companies and the means of protecting against them. These include cyber risk, cyberattack, cybersecurity and cyber resilience. They often seem to be used interchangeably – what do they all mean?
- What is the potential impact of a cybersecurity event to significant or public infrastructure/services if our company manages or operates these?
- What role should I as a board member play in cybersecurity and cyber resilience for the company?
- What is my role as a board member if my company experiences a cyber event?
- What does a cyber insurance policy cover?
- What does a cyber insurance policy not cover?
- How do I determine the right level of cyber insurance coverage for my company?
- Is cyber insurance the new 'D&O' as a necessary insurance purchase?