Digital risk, including cyber risk, is a pervasive and vital concern for any trustworthy organization. Legal leaders, and especially the board of directors, need to understand and address cyber risk in their strategic decisions. However, a rapidly changing cyber-threat landscape and proliferating regulations make it clear that there is a need for stronger foundations to govern cyber risks effectively. 

This report details six consensus-based principles—derived from the work of leading organizations and further validated by cybersecurity, legal, risk, and industry experts—to guide and strengthen cyber-risk governance at the board level in order to thrive in today’s environment. 

Download this report that covers:

• Guidance with examples and critical questions that lead to understanding current positions and the ability to set cyber-risk oversight goals. 
• Methodologies for improving the cyber-risk position of organizations regardless of location or industry.
• A detailed approach for boards to achieve cyber resilience and understand their role in governing it.