Open Book Cyber Management One of the CIO's most important rules for a good working relationship with the board is to be open and honest. They are very upset when management is not transparent. They are willing to work with the company to solve even serious problems as long as you don't tell them six months later when it's already too late. For this reason the CIO strives to be open and honest with the board of directors.
They appreciate the transparency of the messages I give them says the CIO. You don't think I'm hiding anything. This combined with the company's track record in cyber security internal audits and third-party assessments gives the board a good sense of how cyber risk is being managed. If a massive data breach hits the news the Whatsapp Mobile Number List board will ask about it. The first thing they ask is whether we're doing enough says the CIO. They don't know exactly what 'enough' is but that's the question. And I'll make it clear that we're doing enough of what we can afford and that's good enough to keep us ahead of most others.
The Board recognizes that there will always be some trade-off between protection and business productivity. With the board's questions and cyber literacy evolving over the past few years the CIO anticipates that going forward the board will want to learn more about the specifics of protocols practices and tools. Two years ago cyber wasn't even a topic of discussion on the board. A year ago people started talking about multifactor authentication.