ECIIA and FERMA have launched joint guidance aimed at helping organisations across Europe develop an effective cyber governance framework.
The framework – detailed in At the junction of corporate governance and cybersecurity – enables companies to make consistent and understandable decisions about their security measures, risk management and overall cyber security posture.
“Risk managers and internal auditors play an important role of coordination and cooperation to build an effective and resilient cyber security system within an organisation,” ECIIA President Henrik Stein says. ”We hope to convince organisations and regulators about the importance of a strong governance model to mitigate cyber risks.”
The guidance outlines a comprehensive risk management approach to cybersecurity, a cyber awareness program covering everyone in the organisation from top to bottom and, most important, the interactions between the three lines of defense to facilitate the communication to the board that is ultimately responsible for the oversight of the cyber governance framework.
Read the guidance here.