Cybersecurity is the new hot topic with boards of directors. High-profile attacks in the news, regulatory changes and customer concerns are fueling their conversations. However, too often these discussions are derailed by technical narrative, myths and misinformation, creating confusion. Few boards have a clear understanding of what cybersecurity is, how it impacts growth and valuation and what they should be doing about it. As a result, boards tend to act in extremes, taking too little action or imposing unrealistic expectations.
For industrial cybersecurity, this is a much harder problem. As attackers expand from traditional Information Technology (IT) targets to the Operational Technology (OT) networks that directly impact operations and safety, companies are forced to rethink their cybersecurity programs. Unfortunately, most boards haven’t been able to get a handle on IT security, and now they must adapt to a whole new world of risk.
This presentation will provide executives the guidance they need to effectively present industrial cybersecurity risks and solutions to their boards of directors.
Key topics include:- Understanding the board’s perspective
- Demystifying industrial cybersecurity and debunking myths
- Breaking down industrial cybersecurity into business challenges and risk
- Clearly defining the difference between IT and OT
- How to drive immediate action to secure resources
- Setting and managing board expectations
- Potential questions the board will ask and how to answer
- Dos and Don’ts (How to stay on the board’s good side)
- How to explain a cyber exploit, including the scenario: “What if you were attacked?”
Communicating effectively to your board of directors can mean the difference between getting the resources you need now or consistently struggling to defend your operations against attack.
