National Cyber Security Assessment

Cyber security is far more than investing in hardware and software. First and foremost, cyber security is a business issue. This means that top management is accountable for ensuring that its organisation’s cyber security strategy meets business objectives and is adopted as a strategic risk . Discussions of cyber risk at board level should include identifying which risks to avoid, accept, mitigate or transfer (such as through cyber insurance), as well as reviewing specific plans associated with each approach.

The three fundamental domains of an effective cyber security strategy are: people, processes and technology. This page explains in further detail how those domains are connected.