TLDR:
- The NCSC is offering a Cyber Governance Training Pack for Boards to help decision makers understand cybersecurity governance.
- Board members should focus on managing cyber risks and consult open source information to stay informed on evolving threats.
The UK’s National Cyber Security Centre (NCSC) is emphasizing the importance of boardrooms in managing cyber-risk within organizations. The NCSC will be providing a Cyber Governance Training Pack for Boards to offer practical guidance on cybersecurity governance. This training pack is designed to complement the Cyber Governance Code of Practice proposed by the Department of Science, Technology, and Innovation (DSIT). Board members are urged to focus on managing cyber risks, as highlighted by NCSC director of operations, Paul Chichester.
Chichester emphasized major threats organizations face, such as cybercrime, ransomware, BEC, state threats, and patriotic hackers. He encourages boards to be situationally aware by consulting open source information and engaging with peers, partners, and competitors. The role of boards is to offer challenge in managing risks, rather than being experts in the subject. The training pack aims to enhance board members’ understanding of cybersecurity governance to drive their company’s agenda and deliver value throughout the organization.
Overall, the NCSC is providing resources and training to help boards play a critical role in managing cyber risks and ensuring organizations are prepared to face evolving cyber threats.