Cyber Guardians

Cyber Guardians

by Bart R. McDonough
Released September 2023
Publisher(s): Wiley
ISBN: 9781394226221

Read it now on the O’Reilly learning platform with a 10-day free trial.

O’Reilly members get unlimited access to books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Book description

A comprehensive overview for directors aiming to meet their cybersecurity responsibilities

In Cyber Guardians: Empowering Board Members for Effective Cybersecurity, veteran cybersecurity advisor Bart McDonough delivers a comprehensive and hands-on roadmap to effective cybersecurity oversight for directors and board members at organizations of all sizes. The author includes real-world case studies, examples, frameworks, and blueprints that address relevant cybersecurity risks, including the industrialized ransomware attacks so commonly found in today’s headlines.

In the book, you’ll explore the modern cybersecurity landscape, legal and regulatory requirements, risk management and assessment techniques, and the specific role played by board members in developing and promoting a culture of cybersecurity. You’ll also find:

  • Examples of cases in which board members failed to adhere to regulatory and legal requirements to notify the victims of data breaches about a cybersecurity incident and the consequences they faced as a result
  • Specific and actional cybersecurity implementation strategies written for readers without a technical background
  • What to do to prevent a cybersecurity incident, as well as how to respond should one occur in your organization

A practical and accessible resource for board members at firms of all shapes and sizes, Cyber Guardians is relevant across industries and sectors and a must-read guide for anyone with a stake in robust organizational cybersecurity.

Table of contents

  1. Cover
  2. Table of Contents
  3. Title Page
  4. Preface: What to Expect from This Book
  5. Chapter 1: Introduction
    1. Summary of a Board's Incident Response
    2. Checklist for a Board's Incident Response
  6. Chapter 2: Cybersecurity Basics
    1. CIA Framework
    2. Key Cybersecurity Concepts and Terminology for Board Members
    3. Common Cyber Threats and Risks Faced by Companies
    4. Key Technologies and Defense Strategies
    5. Threat Intelligence
    6. Threat Actors
    7. MITRE ATT&CK Framework
    8. Chapter 2 Summary
  7. Chapter 3: Legal and Regulatory Landscape
    1. Overview of Relevant Cybersecurity Regulations and Laws
    2. Discussion of Compliance Requirements and Industry Standards
    3. Individual Director Liability
    4. Chapter 3 Summary
  8. Chapter 4: Board Oversight of Cybersecurity
    1. The Board's Role in Overseeing Cybersecurity Strategy
    2. Developing an Effective Cybersecurity Governance Framework
    3. Best Practices for Board Engagement and Reporting
    4. Overcoming Objections to Effective Cybersecurity Oversight
    5. Promoting a Cybersecurity Culture
    6. Chapter 4 Summary
  9. Chapter 5: Board Oversight of Cybersecurity: Ensuring Effective Governance
    1. The Role of the Board in Overseeing Cybersecurity
    2. Developing an Effective Cybersecurity Governance Framework
    3. Strategies for Identifying, Assessing, and Prioritizing Cyber Risks
    4. Conducting Cybersecurity Risk Assessments
    5. How to Develop and Promote a Culture of Cybersecurity
    6. Chapter 5 Summary
  10. Chapter 6: Incident Response and Business Continuity Planning
    1. Implementing Cybersecurity Policies and Procedures
    2. Incident Response and Business Continuity Planning
    3. Incident Response Planning
    4. Defining the Types of Assessments
    5. Chapter 6 Summary
  11. Chapter 7: Vendor Management and Third-Party Risk
    1. The Importance of Third-Party Risk Management for Board Members
    2. Best Practices for Managing Third-Party Cyber Risk
    3. Legal and Regulatory Considerations in Third-Party Risk Management
    4. Sample Questions to ask Third-Party Vendors
    5. Chapter 7 Summary
  12. Chapter 8: Cybersecurity Training and Awareness
    1. Importance of Cybersecurity Awareness for All Employees
    2. Strategies for Providing Effective Training and Awareness Programs
    3. More Detail on Effective Training Strategies
    4. Chapter 8 Summary
  13. Chapter 9: Cyber Insurance
    1. Understanding Cyber Insurance
    2. Key Components of Cyber Insurance
    3. Evaluating and Purchasing Cyber Insurance
    4. Managing and Reviewing the Cyber Insurance Policy
    5. Chapter 9 Summary
  14. Chapter 10: Conclusion: Moving Forward with Cybersecurity Governance
    1. The Board's Role in Cybersecurity Governance
    2. Key Takeaways and Action Items for Board Members
    3. Chapter 10 Summary
  15. Appendix A: Checklist of Key Considerations for Board Members
  16. Appendix B: Sample Questions
  17. Appendix C: Sample Board Meeting Agenda
  18. Appendix D: List of Key Vendors
  19. Appendix E: Cybersecurity Resources
  20. Appendix F: Cybersecurity Books
  21. Appendix G: Cybersecurity Podcasts
  22. Appendix H: Cybersecurity Websites and Blogs
  23. Appendix I: Tabletop Exercise: Cybersecurity Incident Response
  24. Appendix J: Articles
  25. About the Author
  26. Acknowledgments
  27. Index
  28. Copyright
  29. Dedication
  30. End User License Agreement

Product information

  • Title: Cyber Guardians
  • Author(s): Bart R. McDonough
  • Release date: September 2023
  • Publisher(s): Wiley
  • ISBN: 9781394226221