X

Thank you for sharing!

Your article was successfully shared with the contacts you provided.

Several years ago, cybersecurity was not even on the radar of most companies and their boards. Over the past several years after countless fiascos and crises impacting companies of every size and scope, cybersecurity has steadily risen as a priority and emerged as an integral aspect of a board of director’s duty of care and oversight to the company it oversees. As cyberthreats continuously evolve, develop and change, management is inundated with guidance on oversight, training, and any number of technical and procedural controls necessary to improve the company’s security posture. In addition to the fast pace of evolution in cybersecurity, a recent trend of high profile data breaches and cyberincidents has put boards of directors on high alert for very specific threats, for example, Wannacry and the threat of ransomware. While this increased attention and scrutiny is important, and salubriously inspires many companies to better their cybersecurity postures, this granular focus runs the risk of missing the forest for the trees. While an understanding of technical controls and specific risks is integral to any cybersecurity program, it is important to understand that there is a greater principle afoot: namely that cybersecurity is not a binary state (secure or insecure), but rather it is a continuous, iterative, dynamic process. Thus, if we, whether on the level of a single company or the broader community as a whole, are to stand any chance of meaningfully moving the ball forward, we must develop a clearer conception of the nature of cybersecurity, the goals that a cybersecurity program must pursue, and the methodologies that must be implemented to accomplish them.

This content has been archived. It is available exclusively through our partner LexisNexis®.

To view this content, please continue to Lexis Advance®.

Not a Lexis Advance® Subscriber? Subscribe Now

Why am I seeing this?

LexisNexis® is now the exclusive third party online distributor of the broad collection of current and archived versions of ALM's legal news publications. LexisNexis® customers will be able to access and use ALM's content by subscribing to the LexisNexis® services via Lexis Advance®. This includes content from the National Law Journal®, The American Lawyer®, Law Technology News®, The New York Law Journal® and Corporate Counsel®, as well as ALM's other newspapers, directories, legal treatises, published and unpublished court opinions, and other sources of legal information.

ALM's content plays a significant role in your work and research, and now through this alliance LexisNexis® will bring you access to an even more comprehensive collection of legal content.

For questions call 1-877-256-2472 or contact us at customercare@alm.com

 

ALM Legal Publication Newsletters

Sign Up Today and Never Miss Another Story.

As part of your digital membership, you can sign up for an unlimited number of a wide range of complimentary newsletters. Visit your My Account page to make your selections. Get the timely legal news and critical analysis you cannot afford to miss. Tailored just for you. In your inbox. Every day.

Copyright © 2018 ALM Media Properties, LLC. All Rights Reserved.