Over the past decade, the issue of cybersecurity has increasingly gained attention in boardrooms around the world, adding yet another critical topic to already packed board agendas. Cyber risk, which has always represented a significant area of enterprise risk, is finally being acknowledged as intersecting with other areas of the board’s oversight, including strategy, operations, and legal, financial, and reputational risks. Yet, while more directors now recognize that their company’s cyber risk management strategy is an area of board concern, many directors lack the necessary expertise to feel fully confident in navigating cybersecurity issues.
