Third-party risk, including supply chain weaknesses, is a hot topic among board rooms

A separate study found that, although the share price of breach-affected companies shows its sharpest drop 14 days after the breach is made public, there is still a discernible impact on the organisation’s stock valuation three years post-event.

We are still very much in the midst of a shift in mindset from a technology-centric to a business-centric view of cyber threats.

CISOs need both technical expertise in analysing and interpreting threat metrics and technology performance, and the ability to apply these skills in a broader business context for board directors so they can deliver strategic cyber risk oversight and governance for the business.

Reporting to the Board – From Numbers to Narrative

While increasingly boards are factoring cyber skillsets into their succession planning when recruiting new board members, most current board directors don’t have deep experience in cybersecurity.

The text above is a summary, you can read full article here.