Some Boards understand the importance of cyber security and make plans accordingly. However, for some, there is still a disconnect between understanding what needs to happen to improve their cyber security and committing the time and money to actually make improvements.
The National Cyber Security Centre (“NCSC”) has produced a useful free toolkit of guidance and supporting resources to encourage Boards to start conversations with their technical experts, internal or external, about how to improve their organisation’s cyber security. It also includes a helpful section on risk management.
You can download the toolkit for free at https://www.ncsc.gov.uk/section/board-toolkit/home