Cybersecurity in the spotlight: Protecting your business in the digital age

12 critical questions to check board readiness against a potential cyberattack.

Imagine you took your board members on a tour of your server room and picked a random wire, threatening to cut it. Would anyone know the implications of losing that specific connection? Or any others? Would they know which potential recovery options are in place if it were to be severed?

Here are 12 questions to ask your board to check your readiness to respond, and recover, from a potential cyberattack:

1. What are your most business-critical assets and/or data?
2. What current protections and processes are in place to secure these assets and data?
3. What would happen if your server lost power and, if you have a backup power system in place, how long would it sustain operations?
4. What is your most likely cybersecurity breach?
5. What response plan is in place if an incident occurs?
6. How much would a potential breach cost the business?
7. How often does the business test this response plan (if you have one) and the current security in place?
8. How often is the cybersecurity and incident response plan reviewed, and who is responsible for that?
9. How, and when, would an incident be communicated to all key stakeholders?
10. What training, if any, is in place for staff on your current security, how to spot a threat, and how to respond to an incident?
11. Does the business have cyber insurance in place?
12. How does the business manage its third-party cybersecurity risks?

In the rapidly evolving landscape of cybersecurity, staying one step ahead of potential threats is not just a matter of choice, it's a necessity. By asking these critical questions, your board can take a leading step toward fortifying your organisation against cyberattacks. However, being prepared is an ongoing process that demands constant vigilance, assessment, and adaptation.

As you reflect on these questions, consider this as not just a one-time evaluation but the beginning of an enduring commitment to digital security. To further assist you on this journey, we've prepared a comprehensive digital security reporting guide. 

Within the guide you will find information on different threats, frameworks, effective ways to communicate, and best-in-class examples among others. 

Sign up to get your copy today.