With most large organisations now seeing cyber security as an enterprise-wide issue rather than solely IT, many boards now see preventing breaches as critically important. Often, however, there is a lack of sufficient technical knowledge or understanding amongst board members to determine the most appropriate actions going forward. Some organisations, too, still are not considering it as important as it should be. This session will cover how to best work with your board and educate them on the cyber security risk to your organisation. Mundipharma will present on their successes at building education and awareness amongst their board, as well as a roundtable discussion led by our Board Education subcommittee who will report back on the work that they have been doing.
09:30 Arrival and registration
- Understand how to communicate cyber security threats effectively without getting too technical or into unnecessary scaremongering, especially with those boards who do not see it as a pertinent issue
- Learn how you can best communicate cyber security in terms of its place in the overall business strategy
- Hear what steps you should take to decide and quantify your organisation's risk appetite, and follow it up with the appropriate actions, as well as when and how this risk appetite can change
10:00 Welcome and introduction
10:10 Report discussion session - Board Education subcommittee
10:45 Case study presentation and Q&A - John Harris, Global CTO, and Gareth Stewart, Head of IT Security Strategy Architecture and Planning, Mundipharma IT Services
11:45 Interactive discussion - First step: making the board cyber security-conscious
13:00 Interactive discussion - Motivating the board: what are the right and wrong tactics?
14:00 Interactive session - Risk appetite: what your organisations is, how you communicate it, and how it can change
14:45 Interactive session - the next stage: getting cyber security its rightful place in the overall business strategy
Please note: While CITF events are free to attend under member corporate subscriptions, if notice of cancellation is provided late - received after 48 hours prior to the day preceding the event (cancellation via the website will be disabled at this time) - or if no cancellation notice is received, a fee of £100 + VAT may be applied.
07 February 2019
Summary: Supporting the board on cyber security
Download this CITF summary on supporting the board on cyber security