SCHAUMBURG, Ill.–(BUSINESS WIRE)–The recent hack of network monitoring service company SolarWinds, impacting a massive swath of U.S. federal agencies, state and local governments and other organizations, has served as a wake-up call to many enterprises—and likely spurred enterprise leaders and boards of directors to ask their cybersecurity teams about their own cyberrisk.
ISACA’s new white paper, Reporting Cybersecurity Risk to the Board of Directors, outlines how cybersecurity and risk professionals can effectively communicate with their boards of directors about cybersecurity and its link to business objectives.
Reporting Cybersecurity Risk to the Board of Directors provides cybersecurity and risk professionals with a foundational understanding of how boards of directors are structured, as well as offers guidance around how to present cybersecurity as a business issue—including helping boards understand their legal and regulatory obligations, the potential disruption to systems, and risk of data loss and theft. The paper also guides cybersecurity and risk professionals in translating information around threat intelligence, risk identification and scenario…
