Is the governance of cybersecurity by your executives and board increasing your company’s risk?
Increasingly, boards and executives are getting sued following major cyber events for failure to exercise appropriate oversight of cybersecurity. GCR will help establish governance practices that will improve your organization’s security posture and help protect against lawsuits.
Cyber Officer and Director Evaluation (CODE)
A 2017 Cisco report indicated 23% of organizations lost business opportunities as a result of an attack, 20% lost customers, and 30% lost revenue. Most highly visible cyber events are followed by shareholder and/or securities class action lawsuits against executives and directors. Mismanagement claims are being scrutinized more closely, and plaintiffs’ attorneys are claiming that directors and officers have a higher standard of care in oversight of cyber security because cyber security regulations, standards, and best practices require them to take specific actions.
GCR has developed leading expertise in conducting governance evaluations against standards and compliance requirements. GCR’s proprietary Cyber Officer and Director Evaluation (CODE) methodology provides your senior team and directors with:
- Threat briefings
- Cyber Oversight Evaluation Report with governance recommendations to ensure oversight of key risks and compliance with governance standards
- Cyber risk strategy analysis, including policy reviews and risk transfer options
- Trusted advisory services on privacy and cybersecurity issues,including management of cyber incidents.