NACD Cybersecurity Continuous Learning Cohort

NACD Cybersecurity Continuous Learning Cohort

It’s not too late! NACD Members can still purchase the full six-part content series for $2595. Any programs that have already occurred will be available to view on-demand, with the opportunity to attend the remaining programs live. For details or to register, please contact

Nearly half of directors surveyed in an NACD poll said they plan to increase their focus on cybersecurity. NACD has created the Cybersecurity Continuous Learning Cohort to help boards gain a firmer grasp of how to oversee the challenges intrinsic to this governance area. This program, which spans multiple events over a number of months, focuses on cyber risks and understanding the oversight principles that can help boards to sustain business continuity in a crisis. This program will provide you with the right questions to ask management, advisors, and the security C-suite to help ensure that effective oversight of your organization’s cyber risks occurs. 

Program Overview

The continuous learning cohort is a deep-dive learning path that includes an interactive, virtual, two-day foundational program; three virtual briefings from expert directors; a case study application; and a self-paced summary course.

Foundational Program | June 2–3, 2021, 12:00–5:00 pm EDT daily, Online

Changing Expectations: Reporting on Cyber-Risk Oversight to the SEC | August 11, 2021, 1:00–2:00 pm EDT, Online

Over the course of the past three years, the US Securities and Exchange Commission (SEC) has released new guidance on what publicly traded companies should disclose regarding cyber risks—guidance that affects how reporting under Regulation S-K should be completed. As the SEC continues to be shaped by new leadership under the current administration, directors should anticipate that there may still be more changes to SEC reporting standards. Join experts in disclosures and fiduciary duty to understand what’s currently being demanded in cyber-risk oversight reporting.

Case Study Application – Cyberbreach Response Tabletop Exercise for Boards | September 15, 2021, 1:00–3:00 pm EDT, Online

What is your board’s role when a cyberbreach is discovered? Are you ready to poke your noses into matters as much as you’re needed, or should your organization distance the board from the event as much as possible? This tabletop exercise will challenge cohort members to question their assumptions about board practices in times of crisis while receiving nuanced guidance on best practices from experts, seasoned directors, and executives with relevant experience along the way.

Expert Director Briefing 2 - Data Privacy Oversight | November 16, 2021, 1:00–2:00 pm EST, Online

Michelle Moore, the academic director of the Master of Science in Cyber Security Operations and Leadership program at the University of San Diego, notes in a blog post that cybersecurity is just one of the critical practices under the umbrella term information security. Information security encompasses the protection of all data—whether printed or in digital form—from unauthorized access or manipulation. As such, information privacy and confidentiality cannot exist without information security. Review how and where privacy oversight fits into the organization’s security puzzle, including current and developing laws and regulations, the consequences of privacy breaches, and how privacy practices themselves can add value to the company.

Expert Director Briefing 3 - How to Structure the Board for Cyber-Risk Resiliency | Q1 2022, Date TBD, 1:00–2:00 pm EST, Online

Come together with the cohort one last time to reinforce insights into board structure topics discussed throughout cohort sessions. Explore whether your board should add a dedicated, chartered committee for cyber-risk oversight or one or more board members with cybersecurity and privacy-management experience, and discuss how your board might approach these changes in the new year.

Self-Paced Summary Course (recap key teachings through a virtual, self-paced course)


NACD Cancellation and Transfer Policies: Event registrations are not guaranteed until payment is received. Upon cancellation of registration, members can obtain a transfer credit or request a refund. Refunds will be assessed a cancellation fee ($100 for registration fees under $1000, $250 for registration fees over $1000). Cancellations must be received in writing no fewer than 30 calendar days before the event start date in order to qualify for a partial refund. If written notice is given within 29 calendar days of the event start date, registrants will forfeit the entire program fee unless it is transferred to another NACD program pursuant to the following transfer policy.

Application for transfer credit must be received within 30 calendar days of the date on which NACD receives written notice of cancellation. Transferred credit will apply only to eligible NACD programs that occur within 12 months of a cancellation. Please submit all cancellations and transfer requests via e-mail to or via fax to 866-536-9044.