Enhancing Cybersecurity Oversight Disclosures—10 Questions for Boards

In brief: This tool provides directors with key questions to pose to their management teams on cybersecurity disclosures for the organization. Enhancing cybersecurity disclosures ensures that legal risks and cyber risks are both being adequately addressed. This tool originally appeared in the publication Cyber-Risk Oversight 2020: Key Principals and Practical Guidance for Corporate Boards.

This resource can help your board to 

  • understand the legal impacts of cyber risks,
  • question management on cybersecurity disclosures, and
  • enhance cybersecurity disclosures within the corporation.

Most relevant audiences: Risk committee chairs, risk committee members, and CISOs