The list of 20 reporting cyber security to the board

Blog / By

1 SEC Proposes New Cyber Reporting Rules for Public Companies

  • Author: cohnreznick.com
  • Published: 08/25/2021
  • Review: 4.92 (764 vote)
  • Summary: · The emphasis on board reporting is not surprising. Board involvement in cybersecurity programs has become a business imperative in recent 
  • Source: https://www.cohnreznick.com/insights/sec-proposes-new-cyber-reporting-rules-for-public-companies

2 (PDF) Reporting Cyber Risk to Boards. CISO Edition. – ResearchGate

  • Author: researchgate.net
  • Published: 06/23/2022
  • Review: 4.79 (246 vote)
  • Summary: · Officers (CISO) to design and implement quantitative cybersecurity metrics to. report cyber risk at Board level and provide reasonable 
  • Source: https://www.researchgate.net/publication/359338731_Reporting_Cyber_Risk_to_Boards_CISO_Edition

3 8 Tips for Reporting Cyber Metrics to the Board – Finextra

  • Author: finextra.com
  • Published: 01/25/2022
  • Review: 4.57 (522 vote)
  • Summary: · 8 Tips for Reporting Cyber Metrics to the Board · Get to know the members of the Board of Directors · Banish ultra–technical terms · Rely on 
  • Source: https://www.finextra.com/blogposting/19902/8-tips-for-reporting-cyber-metrics-to-the-board

4 The Guide To A CEOs First Board-Level Cybersecurity Report

  • Author: cybersaint.io
  • Published: 05/11/2022
  • Review: 4.21 (212 vote)
  • Summary: Rolling cyber risk into an organization’s overall risk appetite statement helps CEOs report up and manage down. An information security report to the board of 
  • Source: https://www.cybersaint.io/blog/the-guide-to-a-ceos-first-board-level-cybersecurity-report

5 How to Create Cybersecurity Reports for Boards – Praxonomy

  • Author: praxonomy.com
  • Published: 09/12/2021
  • Review: 3.99 (583 vote)
  • Summary: · Effective cybersecurity reporting requires that information be presented clearly and succinctly so that priorities can be identified, issues can 
  • Source: https://www.praxonomy.com/blog/how-to-create-cybersecurity-reports-for-boards/

6 Building a Cybersecurity Board Report: A 5-Step Guide

  • Author: securityscorecard.com
  • Published: 05/27/2022
  • Review: 3.81 (421 vote)
  • Summary: · Building a Cybersecurity Board Report: A 5-Step Guide · 1. Follow cybersecurity reporting guidelines · 2. Determine the organization’s risk 
  • Source: https://securityscorecard.com/blog/building-a-cybersecurity-board-report-5-step-guide

7 Cyber In The Boardroom: A Reporting Framework | Risk Governance

  • Author: healthguardsecurity.com
  • Published: 02/20/2022
  • Review: 3.75 (594 vote)
  • Summary: What is RiSO? RiSO is a governance and board reporting framework for cybersecurity
  • Source: https://healthguardsecurity.com/cyber-in-the-boardroom/

8 Reporting Cybersecurity to the Board: A CISO’s Go-To Guide

  • Author: bankinfosecurity.com
  • Published: 02/26/2022
  • Review: 3.43 (583 vote)
  • Summary: But today, boards have to consider the regulatory, fiduciary, organizational, and personal liability that could come from a data breach which means board 
  • Source: https://www.bankinfosecurity.com/whitepapers/reporting-cybersecurity-to-board-cisos-go-to-guide-w-2590

9 SEC Proposes New Cybersecurity Disclosure Rules on Incident

  • Author: perkinscoie.com
  • Published: 01/31/2022
  • Review: 3.35 (353 vote)
  • Summary: · As cybersecurity threats to the private and public sectors … cybersecurity report to the board (or board committee) regarding cyber risk
  • Source: https://www.perkinscoie.com/en/news-insights/sec-proposes-new-cybersecurity-disclosure-rules-on-incident-reporting-risk-management-strategy-and-governance.html

10 Overseeing cyber risk: the board’s role – PwC

  • Author: pwc.com
  • Published: 06/10/2022
  • Review: 3.12 (494 vote)
  • Summary: Cybersecurity can be an intimidating area for the board to oversee. However, a well thought out approach to oversight, robust reporting, 
  • Source: https://www.pwc.com/us/en/services/governance-insights-center/library/overseeing-cyber-risk.html

11 SOC for Cybersecurity – AICPA

  • Author: us.aicpa.org
  • Published: 09/13/2021
  • Review: 2.93 (80 vote)
  • Summary: This information can help senior management, boards of directors, analysts, … The AICPA’s new cybersecurity risk management reporting framework helps 
  • Source: https://us.aicpa.org/interestareas/frc/assuranceadvisoryservices/aicpacybersecurityinitiative

12 Reporting cyber security to the board? How to get it right

  • Author: stickmancyber.com
  • Published: 12/20/2021
  • Review: 2.88 (159 vote)
  • Summary: Cyber security board reporting should educate without overwhelming. It shouldn’t throw an audience into panic mode, but neither should it sugarcoat the facts
  • Source: https://www.stickmancyber.com/cybersecurity-blog/reporting-cyber-security-board-get-right

13 Why today’s CISOs need a seat on the board – Cyber Security Hub

  • Author: cshub.com
  • Published: 01/05/2022
  • Review: 2.63 (98 vote)
  • Summary: · To meet this need, CISOs must transition their current board reporting of key performance metrics and infrastructure threat discussions to 
  • Source: https://www.cshub.com/executive-decisions/articles/why-todays-cisos-need-a-seat-on-the-board

14 Board-Level Guide: Cybersecurity Leadership – Cyber Resilience

  • Author: carnegieendowment.org
  • Published: 12/20/2021
  • Review: 2.53 (129 vote)
  • Summary: Assign one corporate officer, usually the CISO, to be accountable for reporting on your organization’s capability to manage cyber resilience and progress in 
  • Source: https://carnegieendowment.org/specialprojects/fincyber/guides/board-guide

15 5 Best Practices for Reporting to Your Board About Cybersecurity

  • Author: pondurance.com
  • Published: 07/13/2022
  • Review: 2.53 (170 vote)
  • Summary: Get practical guidance for reporting to your board about cybersecurity, preparing presentations, building strong relationships, and more
  • Source: https://www.pondurance.com/resource/whitepapers/reporting-cybersecurity-to-the-board/

16 DTMB – Cybersecurity – State of Michigan

  • Author: michigan.gov
  • Published: 05/19/2022
  • Review: 2.46 (145 vote)
  • Summary: (Symantec 2019 Internet Security Threat Report); A growing number of local public entities, such as township and village governments as well as school 
  • Source: https://www.michigan.gov/dtmb/services/cybersecurity

17 [PDF] Reporting to the Business and the Board

  • Author: eiseverywhere.com
  • Published: 05/10/2022
  • Review: 2.27 (176 vote)
  • Summary: Appendix: Sample Board Reporting Dashboards … Why do boards care about cyber security? • Boards have a responsibility to protect shareholder value
  • Source: https://www.eiseverywhere.com/docs/438/242760

18 A Practical Guide to Risk-Based Cybersecurity Reporting – Bitsight

  • Author: bitsight.com
  • Published: 11/06/2021
  • Review: 2.26 (59 vote)
  • Summary: By taking a risk-based approach to cybersecurity reporting, you can assess cyber risk performance management based on actual exposure to cyber threats, provide 
  • Source: https://www.bitsight.com/resources/a-practical-guide-risk-based-cybersecurity-reporting

19 Reporting to the Board of Directors: A Toolkit for CISOs | Secureworks

  • Author: secureworks.com
  • Published: 04/14/2022
  • Review: 2.08 (159 vote)
  • Summary: Boards oversee risk, not operations, so don’t simply tell them how your cybersecurity program works. Instead, show them how (or how well) your team manages 
  • Source: https://www.secureworks.com/resources/wp-a-toolkit-for-cisos

20 Cybersecurity in the Boardroom: How to Report Risk to Leadership

  • Author: securityboulevard.com
  • Published: 09/13/2021
  • Review: 2.04 (75 vote)
  • Summary: · A 2021 Ponemon Institute study showed that only 7% of CISOs report directly to their CEOs. Roughly 60% of CISOs “regularly brief” their board of 
  • Source: https://securityboulevard.com/2022/05/cybersecurity-in-the-boardroom-how-to-report-risk-to-leadership/