First Reference company logo

Inside Internal Controls

News and discussion on implementing risk management

machine cogs image

cybersecurity policies

People still don’t know how to assess cyber risk!

Why do the consultants keep advising management and the boards to consider cyber risk as if it is separate from all other business risks?

 

, , , , , ,

Cybersecurity governance and D&O liability

The assessment of a corporation’s cyber risks is part of a board of directors’ general risk oversight responsibilities. Since lawsuits, including class actions, are often commenced soon after a data breach, directors and officers should now consider that the board’s oversight of cyber risks may also be closely and thoroughly scrutinized in future litigation and […]

 

, , , , , , , , , , , , , ,