January 15, 2020
This report by the Center for Long-Term Cybersecurity and Booz Allen Hamilton uses insights gleaned from board members with 130+ years of board service across nine industry sectors to offer guidance for boards of directors in managing cybersecurity within large global companies. The report, “Resilient Governance for Boards of Directors: Considerations for Effective Oversight of Cyber Risk,” provides an innovative framework to help boards take a dynamic approach to cybersecurity governance and oversight. The report identifies four “dynamic tensions” likely to shape board governance and oversight of cybersecurity. This includes an organization’s overall risk model or mindset; distribution of cybersecurity expertise on the board; balance between cooperation and competition with other enterprises; and the model for information flows between management and the board.