When it comes to cybersecurity training for board members, have you made any changes to training content or frequency? What new topics or exercises have you added (or plan to)?
Sort By:
Oldest
CIO in IT Services23 days ago
I conducted training for public board members last year, and I found that their basic understanding of cybersecurity was even more rudimentary than I had anticipated due to a lack of technical skills. I had to simplify the content significantly, making it more informational and conceptual. Even at the most basic level of Cyber 101, I had to bring it down another notch because they just didn’t understand it.CISO in Software23 days ago
Is there recommended courses or curriculum for Fortune 500 boards?
These assistants are often targeted with highly-crafted emails that are difficult to distinguish from legitimate ones. While a generic phishing email might be sent to me, someone might spend weeks crafting the perfect email to target the CFO or their assistant. This targeted awareness training is crucial. Board members don’t need to learn about cloud computing practices or configuring Docker images, but they do need to understand the specific threats they face.
Often, they receive the standard training that everyone else gets. However, they need more targeted training. It’s essential to sit down with them, explain what to look for, and what to be suspicious of. They need to be aware of the specific threats they face because they are often signing off on many legitimate things, making it easy for them to fall for well-crafted phishing attempts. Administrative assistants are also usually very busy and multitasking, which increases their vulnerability.