Reporting cybersecurity to boards

Most organisational activity has technology implications. The risk of damage from a cyberattack or data breach can be high.

Boards need comprehensive reporting from management about cyber risks and incidents, and actions taken to address them.

This guide gives boards guiding principles for management reporting on cybersecurity, questions to ask in developing cybersecurity metrics, and examples of cybersecurity dashboards.

Download guide:

Reporting cybersecurity to boards

( PDF FILE, 199 KB )

Download guide:

Related content

A radicalised threat to your data, business and customers

Privacy and cyber breaches – lessons from frontline responders

Espionage is an emerging vulnerability for New Zealand companies

Global audit insights: converging risks and what directors must know