National Cyber Security Centre Publishes Cyber Board Toolkit
Board members need to understand cyber security.
It is a statement that is regularly made about businesses, regardless of the sector or the size of the organisation, without further thought as to how those board members can better understand their organisation’s cyber risk profile. With new regulations in place, such as the General Data Protection Regulation (GDPR), board members now have raised expectations as to their roles and responsibilities.
That is why the National Cyber Security Centre (NCSC) today published a cyber Board Toolkit – made relevant to anyone that is accountable within an organisation, from the Board of Directors or Governors to Trustees and Partners. The Toolkit is also relevant for technical staff and security practitioners, who are able to use the questions in the toolkit to frame discussions with the Board. Through using the Toolkit, board members can know enough about cyber security in order to have a fluent conversation with their cyber practitioners.
The Toolkit provides:
- A general introduction to cyber security
- Separate sections, each dealing with an important aspect of cyber security. For each aspect, we will: explain what it is, and why it's important, recommend what individual Board members should be doing, recommend what the Board should be ensuring your organisation is doing and provide questions and answers which you can use to start crucial discussions with your cyber security experts
3. An Appendix summarising the legal and regulatory aspects of cyber security
Commenting on the publication of the launch, techUK's President Jacqueline de Rojas said:
“A common issue in the UK boardroom has been that cyber is delegated to the IT department and does not rise to the surface as a priority until a breach has occurred. Given that a cyber attack is no longer an 'if' but more likely a 'when', board members need help with guidance on what to protect and how to go about it.
Put together with input from a selection of boards from diverse sectors, this NCSC toolkit is a practical resource for board members and their CISOs. To help identify best practice and better understand how to articulate and discuss cyber investment decisions in the boardroom.
As the threat landscape increases and changes, techUK looks forward to working with the NCSC to promote and extend this guidance. In the event of an incident, boards will be in a position to respond effectively and in many cases take proactive steps to avoid attack on the first place.”
For further information, please visit the NCSC website here
Latest News from
Guest blog: AI in healthcare - How economics can help us understand the risks11/06/2021 13:38:00
Federico Cilauro, Manager at Frontier Economics, a leading economics consultancy, writes about the potential of AI to revolutionise medical diagnosis.
European Commission publishes new Standard Contractual Clauses11/06/2021 11:25:00
Following the Schrems II ruling, the European Commission has updated its existing Standard Contractual Clauses for the first time since 2010, to allow for better compliance to GDPR in the transfer of personal data across borders.
Maritime Early Warning Innovations Competition10/06/2021 16:25:00
The Defence and Security Accelerator (DASA) has launched a competition for the development of innovative technologies to provide novel methods of Early Warning (EW) for maritime operations.
techUK welcomes G7 Global Tax Agreement10/06/2021 12:38:00
The deal at the G7 paves the way for broader multilateral talks at the OECD and a pathway to the removal of national digital services taxes.
New study reveals the data of a year lived online for the UK10/06/2021 10:10:00
UK regulator Ofcom has published its 2021 Online Nation Report, offering a snapshot of an “unprecedented year” for UK citizens as communication, entertainment, culture, retail, work and education moved online.
Procurement Policy Note 06/21: Taking Account of Carbon Reduction Plans in the procurement of major government contracts09/06/2021 11:25:00
The Cabinet Office has launched guidance on taking account of Carbon Reduction Plans in the procurement of major central government contracts.
Fast Forward for Digital Jobs08/06/2021 16:25:00
techUK's Fast Forward for Digital Jobs report examines the state of play of adult education and digital skills training and sets out seven key recommendations to support learners, support employers, and deliver change at scale.
techUK is supporting Digital T Levels08/06/2021 11:25:00
Offer a 16-19 year old a work experience placement at your business as part of their Digital T Level qualification.
Innovative Opportunities for SME's to Reduce Reoffending07/06/2021 16:25:00
PUBLIC has been working in partnership with the Ministry of Justice to kick off the exciting new Prison Leavers Innovation Challenge (PLIC).