Cybersecurity as a Key Focus for the Risk Committee

On 29 May 2025 at 12:00 UK time, we will discuss Cybersecurity as a key focus for the Risk Committee.

Our experienced panel of risk specialists and board directors will explore the following key topics:

1. The Evolving Cyber Threat Landscape

• Overview of current and emerging cyber threats (ransomware, phishing, insider threats, etc.)

• Key risks faced by organisations, particularly in emerging markets

  
  

2. The Role of the Risk Committee in Cybersecurity Oversight

• How the Risk Committee sets the tone for cybersecurity governance

• Aligning cyber risk strategy with enterprise risk management

• Defining the Risk Committee’s responsibilities vs. those of management and IT teams

  
  

3. Regulatory & Compliance Considerations

• Key regulatory frameworks and compliance requirements (e.g. GDPR, NIS2, SEC cyber rules)

• How to ensure the board is cyber-compliant across different jurisdictions

  
  

4. Building a Resilient Cybersecurity Culture

• The board’s role in fostering a cybersecurity-aware corporate culture

• Implementing effective employee training and awareness programmes

• Addressing risks associated with third-party vendors and supply chains

  
  

5. Cyber Incident Preparedness & Response

• How the Risk Committee should review and assess incident response plans

• Understanding business continuity and disaster recovery protocols

• Conducting cybersecurity stress tests and simulations

  
  

6. Cybersecurity Metrics & Board Reporting

• What KPIs and metrics should the Risk Committee monitor?

• Ensuring meaningful reporting from the CISO or IT leadership

• How to assess cyber risk appetite and investment in cybersecurity