2 minute read
Cybersecurity for Business
Organization-Wide Strategies to Ensure Cyber Risk Is Not Just an IT Issue
Edition: 1 Date: 03/04/2022 Price: £29.99 ISBN Paperback: 9781398606142 ISBN Ebook: 9781398606395 Pages: 272 Format (mm): 234x156 Product Category: Supplementary Text/
Professional
Subject: Risk Management
Author Information
Internet Security Alliance provides thought leadership in cybersecurity and works with the US government to advocate for public policy that will advance the interests of cybersecurity.
Larry Clinton is President of the Internet Security Alliance. He advises industry and government on cyber policy and regularly appears in the media to provide an expert opinion. He has briefed NATO, the Organization of American States (OAS), G-20 and the US Congress. He has twice been named to the NACD ‘Directorship 100’ list of the most influential individuals in corporate governance. « Explains how organizations can achieve their digital transformation goals without creating undue cybersecurity risks « Brings together chapters written by senior practitioners of cybersecurity from a wide range of industry sectors « Based on principles that have been independently shown to improve cybersecurity by enhancing risk management, aligning business goals and creating a culture of security throughout an organization « Explores the roles and responsibilities of each department in managing cyber risk, including HR,
Legal, Audit, M&A and Supply Chain Management « Reframes cybersecurity as a strategic business issue and translates board-level principles to the management level
Description
Balance the benefits of digital transformation with the associated risks with this guide to effectively managing cybersecurity as a strategic business issue.
Important and cost-effective innovations can substantially increase cyber risk and the loss of intellectual property, corporate reputation and consumer confidence. Over the past several years, organizations around the world have increasingly come to appreciate the need to address cybersecurity issues from a business perspective, not just from a technical or risk angle. Cybersecurity for Business builds on a set of principles developed with international leaders from technology, government and the boardroom to lay out a clear roadmap of how to meet goals without creating undue cyber risk.
This essential guide outlines the true nature of modern cyber risk, and how it can be assessed and managed using modern analytical tools to put cybersecurity in business terms. It then describes the roles and responsibilities each part of the organization has in implementing an effective enterprisewide cyber risk management program, covering critical issues such as incident response, supply chain management and creating a culture of security. Bringing together a range of experts and senior leaders, this edited collection enables leaders and students to understand how to manage digital transformation and cybersecurity from a business perspective.
Table of Contents
1 Why we need to take an enterprise-wide approach to cyber risk
1 The growing cyber threat – not just an “IT” issue 2 View from the top – how boards are addressing cyber risk 3 Structuring the organization for the digital age 4 A modern approach to assessing cyber risk
2 How to manage cyber risk from an enterprise-wide perspective
3 The roles and responsibilities of human resource management in cybersecurity 4 The roles and responsibilities of legal and general counsel 5 The roles and responsibilities of audit and compliance 6 Cybersecure supply chain and third-party management 7 The roles and responsibilities of technical operations 8 The roles and responsibilities of external communications and crisis management 9 The roles and responsibilities in mergers and acquisitions 10 The roles and responsivities of cyber operations in developing a culture of security