Designed specifically for board members, this session will explore the UK Cyber Governance Code of Practice, with a focus on the 'Incident Planning, Response and Recovery' principle of the Code; exploring incident response planning and good practices for promoting and guiding preparedness for a cyber incident.
The Corporate Governance Code of Practice (CGCP) was published by the UK Department for Science, Innovation and Technology, with the aim of supporting boards in governing cyber security risks. The Code sets out the most critical governance actions that directors are responsible for, forming part of the government's free support package.
Topics covered will include:
- Approach to developing a cyber incident response plan.
- Understanding the intersection between incident response, business continuity and disaster recovery planning.
- Evaluating what external support you need in case of a cyber incident.
- Assessing the communication needs during a cyber incident, including those that involve the board.
- Ensuring sufficient scope, frequency and learning from practicing your incident response.
- Planning for the typical phases of recovery.