وبلاگ بلیان

Building a Cyber Resilient Business : A Cyber Handbook for Executives and Boards

معرفی کتاب «Building a Cyber Resilient Business : A Cyber Handbook for Executives and Boards» نوشتهٔ Dr. Magda Lilia Chelly, Shamane Tan, Hai Tran، منتشرشده توسط نشر Packt Publishing در سال 2022. این کتاب در 5 صفحه، فرمت pdf، زبان انگلیسی ارائه شده است.

Learn how to build a proactive cybersecurity culture together with the rest of your C-suite to effectively manage cyber risks Key Features Enable business acceleration by preparing your organization against cyber risks Discover tips and tricks to manage cyber risks in your organization and build a cyber resilient business Unpack critical questions for the C-suite to ensure the firm is intentionally building cyber resilience Book Description With cyberattacks on the rise, it has become essential for C-suite executives and board members to step up and collectively recognize cyber risk as a top priority business risk. However, non-cyber executives find it challenging to understand their role in increasing the business's cyber resilience due to its complex nature and the lack of a clear return on investment. This book demystifies the perception that cybersecurity is a technical problem, drawing parallels between the key responsibilities of the C-suite roles to line up with the mission of the Chief Information Security Officer (CISO). The book equips you with all you need to know about cyber risks to run the business effectively. Each chapter provides a holistic overview of the dynamic priorities of the C-suite (from the CFO to the CIO, COO, CRO, and so on), and unpacks how cybersecurity must be embedded in every business function. The book also contains self-assessment questions, which are a helpful tool in evaluating any major cybersecurity initiatives and/or investment required. With this book, you'll have a deeper appreciation of the various ways all executives can contribute to the organization's cyber program, in close collaboration with the CISO and the security team, and achieve a cyber-resilient, profitable, and sustainable business. What you will learn Understand why cybersecurity should matter to the C-suite Explore how different roles contribute to an organization's security Discover how priorities of roles affect an executive's contribution to security Understand financial losses and business impact caused by cyber risks Come to grips with the role of the board of directors in cybersecurity programs Leverage the recipes to build a strong cybersecurity culture Discover tips on cyber risk quantification and cyber insurance Define a common language that bridges the gap between business and cybersecurity Who this book is for This book is for the C-suite and executives who are not necessarily working in cybersecurity. The guidebook will bridge the gaps between the CISO and the rest of the executives, helping CEOs, CFOs, CIOs, COOs, etc., to understand how they can work together with the CISO and their team to achieve organization-wide cyber resilience for business value preservation and growth. Table of Contents The CEO Cyber Manual A Modern Cyber-Responsible CFO The Role of the CRO in Cyber Resilience Your CIO―Your Cyber Enabler Working with Your CISO The Role of the CHRO in Reducing Cyber Risk The COO and Their Critical Role in Cyber Resilience The CTO and Security by Design The CMO and CPO―Convergence Between Privacy and Security The World of the Board The Recipe for Building a Strong Security Culture―Bringing It All Together Cover Copyright Contributors About the reviewers Global Expert Takeaways Table of Contents Preface Chapter 1: The CEO Cyber Manual Why cybersecurity should be a CEO’s priority Dependency on technology—a critical business failure blindspot Cybersecurity is a critical environmental, social, and governance pillar Understanding cyber risks and their implications for businesses Understanding cybersecurity challenges, organization, and reporting Cybersecurity and information technology—similar skills but with a different focus Beyond technology—cyber risk is a business risk Demystifying data breaches and cyberattacks Quantifying cyber costs versus return on investment Building a culture of cybersecurity Preparing a business for cyberattacks Cybersecurity considerations for a CEO’s first month Questions to ask yourself as a CEO when considering your cyber risk coverage Summary Chapter 2: A Modern Cyber-Responsible CFO Why the CFO should care about cybersecurity The role of the CFO in cybersecurity The CFO’s understanding of cybersecurity The aspects of cybersecurity the CFO should consider A CFO’s perspective Addressing cyber risk from a complex financial view Defining the CFO’s role in building cyber resilience Benchmarking cybersecurity budgets Defining cybersecurity spending Supporting cyber-risk quantification Purchasing cyber insurance Assessing third-party risks Communicating with the CFO about cyber risks Economic costs Mindset Questions to ask your CFO Summary Chapter 3: The Role of the CRO in Cyber Resilience Understanding the role of the CRO and its key focus areas Analyzing the CRO’s key priorities Identifying the CRO’s challenges Strategies, systems, frameworks to manage cyber risk Connecting the dots Developing the right mindset as a CRO Understanding the collaboration potential between the CRO and CISO Questions to ask your CRO Summary Chapter 4: Your CIO—Your Cyber Enabler Understanding the CIO’s role and the impacts their decisions have on cybersecurity Rapid technology adoption Balancing digital transformation Complex regulatory landscape Third-party risks Differences and commonalities between the CIO and CISO roles Getting ahead of cybercriminals How the CIO supports your security Questions to ask your CIO Summary Chapter 5: Working with Your CISO Understanding the role of the CISO Your CISO’s understanding of your business Priorities for a new CISO Addressing cybersecurity challenges Cyber risk identification and quantification The different approaches to handling your cyber risk Cyber risk management strategy Cybersecurity metrics Indicators for dashboarding/reporting Questions to ask your CISO A Bonus Segment for Our CISOs—Decoding Your CxOs’ Expectations Key Communication Non-negotiables Cyber Risk Quantification—the Holy Grail for Your Success A Bonus Segment for Our CISOs—Purchasing Cyber Insurance A Bonus Segment for Our CISOs—Reporting to the Board of Directors Summary Chapter 6: The Role of the CHRO in Reducing Cyber Risk Why the CHRO should care about cybersecurity The transitioning role of the CHRO How the CHRO supports cyber resilience The tools HR uses Recruiting qualified cybersecurity team members The challenges CHROs face with cybersecurity Questions to ask your CHRO A bonus segment for our CISOs—recruiting and building your cybersecurity team Summary Chapter 7: The COO and Their Critical Role in Cyber Resilience Understanding the role of the COO Why the COO should care about cybersecurity Where the line is between the COO and the CISO in terms of responsibility for business continuity Operational technology and cybersecurity—a necessity in today’s world Business continuity plan management—the dos and don’ts Business continuity and disaster recovery must not fail! What does a good BCP look like? The methodology Disaster recovery planning Test, test, test. Did we mention your plan must be tested? Questions to ask your COO Summary Chapter 8: The CTO and Security by Design The role of the CTO The difference between a CDO and CTO Why the CTO should care about cybersecurity How the CTO becomes a security ally Secure coding and secure software development Conflicts of interest and collaboration between the CTO and the CISO Questions to ask your CTO Summary Chapter 9: The CMO and CPO—Convergence Between Privacy and Security What the CMO and CPO roles have in common The role of marketing and privacy in cybersecurity Risk mitigation The intersection of privacy and security The role of marketing and communication following a cyber incident Questions to ask your CMO and CPO Summary Chapter 10: The World of the Board Understanding the world of the board The board’s structure The board’s interests in cybersecurity Business ownership Appropriate investment Rightly equipped Risk transfer options Maintaining foresight Industry resilience The CISO’s seat at the table Speaking the board’s language What not to do in the boardroom Reporting to the board (an add-on for CISOs and a reference for CEOs) Boards and mergers and acquisitions Asking the board the right questions and setting up your CISO for success Summary Chapter 11: The Recipe for Building a Strong Security Culture—Bringing It All Together Building a robust security culture Bringing it all together CISO add-on—building a cybersecurity culture The different building blocks Varying your training Cloud-sharing responsibility A hands-on cyber-awareness program What kind of community are you building? Questions to ask yourself about building a culture Summary Index Other Books You May Enjoy This comprehensive guide will aid the C-suite and executives in understanding the necessity of cyber resilience in their organizations, self-assess their role in supporting their company's cybersecurity program, and provide practical takeaways and insights on navigating their working relationship with the other C-suite counterparts.
دانلود کتاب Building a Cyber Resilient Business : A Cyber Handbook for Executives and Boards