If you ask corporate board members and senior executives to list their number one risk (other than financial operations), the answer in today’s risk environment is clear – cybersecurity and data privacy.  The rapid elevation of this risk is reflected in weekly headlines announcing ransomware, cyber-attacks and data breaches.  In NAVEX’s recent State of Compliance Survey, one in three respondents indicated their company had experienced...

Companies face evolving and significant cyber risks. The FBI estimates that ransomware will generate at least $1 billion for criminals.  Businesses stand to lose at least $400 billion each year from hacks.  The cyber defense, forensics and insurance industry will be worth nearly $200 billion by the end of this decade.  Each year there is an average of 1.5 million cyber attacks, or approximately 4000 per day....

Cybersecurity compliance, like the compliance profession, is rapidly growing. The forces pushing cyber compliance are two-fold: the ever-increasing and changing nature of cyber threats and harms, and the logical application of compliance strategies. Compliance has to work closely with in-house corporate information technology. To the extent a company outsources information technology to a cloud provider, compliance will serve an even more important function in coordinating...