What does good look like? A Cyber Security Toolkit for Boards

The National Cyber Security Centre has published a Cyber Security Toolkit for Boards. The resources are designed to encourage essential cyber security discussions between the Board

and their technical experts.


The toolkit is focused around nine stand alone modules that introduce key topics in cyber security. Each topic includes suggested questions and possible answers, to ask within an organisation to open up discussions between the Board and Staff. The modules can be taken in any order.


Download the full toolkit as a PDF here.
NCSC Cyber Security Toolkit for Boards
.pdf
Download PDF • 1.62MB

Each section within the guidance addresses three questions:


1 What should the Board do? This provides specific actions for the Board


2 What should your organisation do? This provides information on aspects that Boards should have oversight of but are unlikely to be actively taking action on (though this is dependent on your organisational structure).


3. What does good look like? This provides questions (and potential answers) designed to generate discussions with your experts that can help the Board identify what constitutes 'good' cyber security within your organisation.

The questions are only the start of the story; you may find that simply getting the right people in the room, engaged in meaningful discussions, can throw a light on what works (and doesn't work) within your organisation.



The contents of this website are provided for general information only and are not intended to replace specific professional advice relevant to your situation. The intention of The Cyber Resilience Centre for the West Midlands is to encourage cyber resilience by raising issues and disseminating information on the experiences and initiatives of others.  Articles on the website cannot by their nature be comprehensive and may not reflect most recent legislation, practice, or application to your circumstances. The Cyber Resilience Centre for the West Midlands provides affordable services and Trusted Partners if you need specific support. For specific questions please contact us.

 

The Cyber Resilience Centre for the West Midlands does not accept any responsibility for any loss which may arise from reliance on information or materials published on this document. The Cyber Resilience Centre for the West Midlands is not responsible for the content of external internet sites that link to this site or which are linked from it.