Publication: 10 critical questions to help board members and the C-suite unlock insights about their cyber maturity

As attackers become highly organised and focus their attention on disrupting services, destroying data, and holding systems to ransom, the risk challenges grow more complex.

Amid this landscape, the connection between risk and performance grows stronger, with responsibility for overseeing cyber risk increasingly resting with the board and the C-suite. These top leaders increasingly want to confirm that their businesses remain secure, vigilant, and resilient – but they are sometimes far removed from the day-to-day challenges of monitoring, detecting, and responding to evolving cyber risks.

To help board members and the C-suite get started, we explore 10 critical questions that will serve as a guide and self-assessment tool to help leaders gauge their cyber maturity, and build new cyber risk understanding. 

10 questions to ask:

1. Do we demonstrate due diligence, ownership, and effective management of cyber risk?

2. Do we have the right leader and organizational talent?

3. Have we established an appropriate cyber risk escalation framework that includes our risk appetite and reporting thresholds?

4. Are we focused on, and investing in, the right things? And, if so, how do we evaluate and measure the results of our decisions?

5. How do our cyber risk program and capabilities align to industry standards and peer organizations?

6. Do we have a cyber-focused mindset and cyber-conscious culture organization wide?

7. What have we done to protect the organization against third-party cyber risks?

8. Can we rapidly contain damages and mobilize response resources when a cyber incident occurs?

9. How do we evaluate the effectiveness of our organization’s cyber risk program?

10. Are we a strong and secure link in the highly connected ecosystems in which we operate?

Download the full publication here

Annual Platinum Partners

Annual Gold Partners

Founding Chambers & National Chapters