There’s a shift taking place in the boardroom: With the recent high-profile cyberattacks like WannaCry and NotPetya, cybersecurity has been placed in the spotlight, making it a much more prominent topic than it was five years ago. Boardrooms are abuzz with questions about these breaches including “how did they happen?” or “what can we do to prevent them from happening to us?”
It’s because of this newfound media attention that CISOs are now being invited into the boardroom “before a breach occurs” to discuss their company’s position in the event of a cyberattack. Recently, leading advisory firm Gartner, predicted that “by 2020, 100% of large enterprises will be asked to report to their board of directors on cybersecurity,” putting the pressure on CISOs to deliver information on cybersecurity posture, risks, threats and incident response plans to an audience who may not have the same level of technical understanding as they do.