National Cyber Security Centre
Business leaders urged to grip cyber risks with fresh support from experts
Refreshed guidance from the NCSC will support board members govern online risk.
- CEOs and senior leaders encouraged to take pivotal role in boosting their organisations’ cyber resilience in face of online threats
- GCHQ’s National Cyber Security Centre launches fresh resources to help organisations become more cyber secure
- Updated Board Toolkit is designed to improve board members’ and senior leaders’ confidence in discussing cyber security with their key stakeholders across the business
BUSINESS leaders are today (Thursday) being helped to get to grips with cyber risks facing their organisation with a fresh package of support from the UK’s cyber security experts.
The National Cyber Security Centre – a part of GCHQ – has launched new resources as part of its Cyber Security Board Toolkit, to help encourage senior leaders to have essential discussions about cyber security with their organisations’ technical experts and key stakeholders.
With nearly all businesses relying on data and technology, the toolkit emphasises how board members should treat cyber risks with the same prominence as financial or legal risks, as cyber attacks can have severe impacts on an organisation’s ability to operate.
The updated toolkit now includes the benefits of cyber security, essential activities for the organisation and indicators of success. It features a range of new content, including bite-sized videos summarising key concepts, an executive summary and a podcast with contributions from industry-leading voices, all designed to make it more engaging than ever.
Users can also find real-life examples of how the Board Toolkit has assisted organisations, such as charity Water Aid, which used the resources to create a cyber security audit that helped leaders gain support from key stakeholders and strengthen their understanding. There is also an account of a ransomware attack on an industrial business from the eyes of its C-level team.
Lindy Cameron, NCSC CEO, said:
“Cyber incidents can have severe impacts on organisations of all sizes, both in the short and longer term, from causing reputational damage to grinding operations to a halt.
“That’s why I am delighted to announce the launch of the NCSC’s refreshed cyber security Board Toolkit to help ensure cyber resilience is rightly put at the top of the agenda for all senior leaders.
“I’d encourage all CEOs, board members and senior leaders to read through the toolkit and use it to drive forward the cyber security conversations needed to keep their organisation secure online.”
The launch of the refreshed Toolkit was also welcomed internationally by the NCSC’s partners.
US Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly said:
“With corporate reputations and revenue on the line – and broader implications for our global security – we must continue to evolve how businesses are prioritizing cybersecurity. That’s why I’m so pleased that our close partners at NCSC are providing updated insight and advice in their latest Board Toolkit.
“Together, we need to catalyze a new model of sustainable cybersecurity that starts with a commitment at the Board level to incentivize a culture of corporate cyber responsibility in which managing cyber risk is treated as a fundamental matter of good governance. The global companies that reside in the U.S. and the U.K. understand that cybersecurity is a borderless issue. This toolkit will be another valuable resource in helping them take accountability for cybersecurity decisions, ultimately raising the collective cybersecurity baseline for us all.”
The Board Toolkit, first launched in 2019, is designed to help board members, CEOs and senior leaders make informed decisions about cyber risks and adopt a systematic and practical attitude towards cyber security within their organisation.
It outlines the basic safeguards that can greatly reduce the likelihood - and impact – of a cyber attack on an organisation and covers a range of issues across three core topics:
- Creating the right environment so good cyber security practices can flourish
- Getting the right information to support decision making
- Taking steps to manage those risks
The new updates have been implemented following feedback received from industry to help ensure the resource remains up to date and relevant to board members.
The NCSC continues to offer an extensive suite of guidance, products and services for technical leaders in medium to large organisations, including its 10 Steps to Cyber Security, Exercise in a Box and Early Warning.
The toolkit has been relaunched ahead of CYBERUK, the UK’s flagship cyber security conference, which will see leaders from industry, government and academia come together to examine securing an open and resilient digital future.
Original article link: https://www.ncsc.gov.uk/news/business-leaders-urged-to-grid-cyber-risk-with-fresh-support-from-experts
Latest News from
National Cyber Security Centre
UK and allies expose Snake malware threat from Russian cyber actors10/05/2023 13:10:00
Snake malware and its variants have been a core component in Russian operations carried out by Centre 16 of Russia’s Federal Security Service (FSB).
UK and international partners publish joint guidance to help communities create secure smart cities21/04/2023 10:05:00
New guide, published during CYBERUK 2023, sets out cyber security best practices for creating connected places.
Peace process accelerated Northern Ireland's rise as global cyber security hub, UK cyber chief says21/04/2023 09:05:00
Northern Ireland continues to play a critical role in securing UK-wide online resilience 25 years after the pivotal accord was signed.
New analysis highlights strength of Ukraine's defence against “unprecedented” Russian offensive20/04/2023 15:10:00
Report from the European Cyber Conflict Research Initiative (ECCRI) gives new insights into the role of cyber criminals and political hacktivists in a conflict, and critical questions around industry support to Ukraine's cyber resilience.
UK and international partners share advice to help turn the dial on tech product security13/04/2023 16:15:00
New guide calls on manufacturers to ensure technology products are made secure by design and by default.
NCSC launches flagship new services to help millions of small organisations stay safe online22/03/2023 14:20:00
New online tools for small organisations to help find and fix any cyber security issues.
International leaders to take centre stage at CYBERUK 2023 in Belfast15/03/2023 16:15:00
Top officials from the U.S., Canada, New Zealand and Singapore amongst speakers for CYBERUK 2023 announced yesterday.
UK's schoolgirl cyber security champions joined by undeclared war star at prestigious awards night15/03/2023 15:15:00
Winning teams from the National Cyber Security Centre’s 2023 CyberFirst Girls Competition attend prize-giving ceremony in Belfast.