Designed specifically for board members, this session will explore the UK Cyber Governance Code of Practice, with a focus on the 'Risk Management' principle of the Code (principle B); exploring practices for designing and improving cyber strategy, equipping you to challenge the alignment of business and cyber strategies.
The Cyber Governance Code of Practice (CGCP) was published by the UK Department for Science, Innovation and Technology, with the aim of supporting boards in governing cyber security risks. The Code sets out the most critical governance actions that directors are responsible for, forming part of the government's free support package.
Topics covered in this session will include:
- Impact-first approach to designing a Cyber Strategy.
- The value of a cyber maturity assessment.
- Ingredients of a backup strategy that helps reduce the impact of a ransomware attack.
- Identity and access management: How to authenticate and authorise access to your systems.
- Evaluating the level of security debt, patching levels and strategies for repaying security debt.
- Alignment with your organisation’s risk appetite.
- Investments in technology and cyber.