Cybercrime is regularly cited as a leading concern for executives, yet board oversight of cyber risks is often inadequate and governance poorly understood, according to the authors of a proposed U.K. code of practice on cybersecurity governance.
On Jan. 23, the U.K.’s Department for Science, Innovation, and Technology opened a consultation to gather views on the code, which is intended to make cyber governance accessible for senior management and elevate cyber risk to the status of other core business risks, such as finance.
