Governance

Whether at home or work, we all experience a person or group making sure that rules are made and not broken so that the things we need to do get done. Cyber security has a similar requirement, which we call ‘Governance’. It covers everything from strategy to budget, data protection to taking card payments and is the ‘wrapper of comfort’ most management needs to ensure the cogs are turning as they need to.

Vicky Griva, Programme Manager XaaS Ltd

In a bit more detail:

Governance ensures your organisation does the right thing at all levels.  It outlines sponsorship, clear lines of accountability, ensures risks are adequately mitigated and assures that cybersecurity strategies all work together in the best interest of your business.

Here are 4 quick wins to start you on your cyber-health journey to improve in governance; click on the icon or scroll down to see more detail:

Make someone accountable for cyber security in your company

Know your legislative obligations and meet them

Understand where you are today and have a roadmap to where you need be

Put by some budget aside for cyber security activities

Make someone accountable for cyber security in your company

Like other areas within your business, whether it is finance, sales etc, your company should nominate an individual who is responsible for cyber security.

This individual is responsible for providing the direction and ensuring that the right things are being done to keep the business safe.

Some simple steps you can take to make someone accountable are:

Know your legislative obligations and meet them

Most business have legal obligations to meet, be it adhering to privacy regulation or more stringent ones such as financial regulations.  It is important to know and understanding hoe to meet the regulations that affect your business.

Some simple steps you can take to meet your legislative obligations are:

Understand where you are today and have a roadmap to where you need be

To increase your cyber-health your business should identify its goals and where it needs to be.  This involves understanding where you are today and what you need to reach your goals.

Some simple steps you can take to build your cyber security roadmap are:

Put by some budget aside for cyber security activities

Just as looking after your own health takes time, effort and investment; improving your cyber-health requires a similar investment with time, effort, resource and budget. 

To ensure that your business can improve its cyber-health, you will need to put aside budget to meet your goals.

Some simple steps you can take to budget for your security activities are: