For many organizations, the most important and strategic issues are addressed and overseen by a board-level committee or task force. Such treatment reinforces the importance of the initiative and ensures that management’s attention is focused on it.
That’s been the case recently at the many companies that have created board-level cyber-security subcommittees. The escalation of oversight reflects the increasing cost and impact of a data breach and acknowledges that new statutes and regulations have put the onus on senior management to ensure their organization is protected. The approach has had positive results; organizations that have taken this route report that their cyber-security strategies are now more effective.