Two Key Areas of Governance Risk Examined in New Research
November 3, 2015 | The Conference BoardEstimated reading time: 4 minutes
The Conference Board today launched two major reports on topics poised in the years ahead to become—where they are not already—defining governance challenges for companies around the globe. The first report surveys prevailing threats, exemplary and cautionary case studies, and emerging best practices in managing cyber risk. The second investigates the dangers of short-term thinking for individual firms and the economy as a whole.
From Ridiculous to Ruinous, Escalating Cyber Risks Demand Proactive Governance
The past year has seen new breaches of cybersecurity revealed in the media on a seeming daily basis, with implications ranging from the embarrassingly personal (35 million adultery-website users “outed” by hackers) to the ominously political (state-sponsored theft of an entire Fortune 100 executive team’s data, including Social Security numbers and health records.) Indeed, the sheer volume, variety, and audacity of high-profile cyber-attacks should disabuse leaders of the notion that any organization—commercial, governmental, or otherwise—is immune from the threat.
Emerging Practices in Cyber Risk Governance helps boards, C-suites, and frontline top managers develop the vigilance and resilience to thrive even as technology evolves and vulnerabilities proliferate faster than ever before. Drawing on publicly available data and the first-hand experience of leading corporations, think tanks, associations, and experts, the report provides a framework for guarding against the full gamut of internal and external cyber risks. To this end, it analyzes the lessons and impact of five high-profile security breaches, involving Target, JP Morgan Chase, Anthem, Sony, and the U.S. Office of Personnel Management. Alongside these cautionary examples are five case studies of Fortune 250 companies that have mitigated major cyber risks through a more proactive governance approach.
“In an age of hypertransparency and superconnectivity, cyber risk is not a standalone issue but one that interacts with other challenges at every level of a firm’s business plan and strategy,” said Andrea Bonime-Blanc, author of the report and CEO and founder of GEC Risk Advisory LLC. “These include everything from the risks third parties pose to supply chains and intellectual property, to human capital risks around employee/insider access to secure assets, to geopolitical and physical security risks associated with state-sponsored industrial espionage. Reputational fallout, moreover amplifies the risk—and potential damage—at every level. Boards and management alike must make cyber risk a central element of planning before an incident occurs.”
Taking off from the latest trends, threats, and best practices, Emerging Practices in Cyber Risk Governance lays out ten keys for addressing the challenge:
1. Developing a triangular governance approach to cyber risk management that joins the board, CEO/C-suite, and frontline talent
2. Understanding the reputation damage to strategic cyber risk management gone wrong
3. Knowing the organization’s cyber risk actors and stakeholders
4. Having a deep understanding and focus on organizational “crown jewels”
5. Engaging in a relevant cyber risk public–private partnership
6. Developing a cross-disciplinary approach to cyber risk management
7. Developing a cross-segmental/divisional approach to cyber risk management
8. Making cyber risk governance an essential part of organizational resilience
9. Choosing one of three proven cyber risk governance models: Vigilant, Integrated, or Command & Control
10. Transforming effective cyber risk governance into an opportunity for better business
Page 1 of 2
Suggested Items
SMTC Strengthens Leadership for Future Growth: Ed Smith Promoted to Executive Chairman; Mike Buseman Joins as CEO
05/15/2024 | BUSINESS WIRESMTC Corporation, a leading North American provider of electronics manufacturing services, is pleased to announce the appointment of Mike Buseman as President & Chief Executive Officer, effective May 13, 2024.
Kitron: Completed Share Buyback in Connection with Remuneration to the Board Members
05/14/2024 | KitronKitron ASA has completed share buyback in connection with remuneration to the board members. Reference is made to the stock exchange release by Kitron ASA published on 13. May 2024 regarding initiation of a share buyback program.
Listen Up: Popular Podcast Series Returns With Discussion of Electroless Copper
05/16/2024 | I-Connect007In the latest episode of the podcast series, On the Line With: Designing for Reality, Nolan Johnson returns to Sunstone Circuits in Mulino, OR, to continue down the manufacturing process with Matt Stevenson.
Real Time with… IPC APEX EXPO 2024: Digitization and Regular Updates of the iNEMI Industry Roadmap
05/14/2024 | Real Time with...IPC APEX EXPORanjan Chatterjee is a board member at iNEMI. In this conversation with Editor Nolan Johnson, Chatterjee discusses the digitization of, and regular updates to, the industry roadmap. The roadmap is a collaborative effort on technologies and standards which is intended to guide CEOs and CTOs in their long-range planning. Ranjan discusses the board's role in shaping the roadmap and the vision for more frequent updates.
Viscom’s Approach to Inline X-Ray
05/14/2024 | Barry Matties, I-Connect007In this interview, Viscom President Ed Moll and CEO Jesper Lykke discuss the importance of inline X-rays for real-time data and board inspection. They also discuss AI integration, customer inquiries, and ROI considerations. Also, as Ed moves into semi-retirement, he reflects on his long career, recent developments, and the evolving X-ray industry. He shares his insights on career opportunities for emerging engineers in the industry.