CISOs Find Collaboration Improves Resiliency

The Advanced Cyber Security Center (ACSC) has published its first annual report, Leveraging Board Governance for Cybersecurity, the CISO / CIO Perspective, the results of which highlight the need for boards to be active governance partners in collaborative cyber defense. Recognizing the shared value of collaboration across organizational functions and between and among organizations when talking about cyber defense, the ACSC report calls upon boards to adopt a holistic and dynamic understanding of their organization’s cybersecurity responsibilities. In addition, boards are encouraged to maintain continuous direct access to CISOs and risk officers as well as with CIOs and other executives. The report found, “For the most part, boards are not in a position to provide strategic guidance on cyber risk,” said Michael Figueroa, executive director of the ACSC in a press release. “In particular, the ACSC report has identified a need for a risk standard, much like those frameworks that financial and audit risk functions have refined over decades, that would help guide decision making and operations as they relate to cyber risk management.”