The NZ National Cyber Security Centre (NCSC) has released a new document for Cyber security and risk management focused on Executive level responsibility.
‘The traditional approach to thinking about cyber security in terms of building bigger walls (firewalls and antivirus software) – while still necessary – is no longer sufficient. A holistic approach to cyber security risk management – across the organisation, its network, supply chains and the larger ecosystem – is required. ‘ pg 2.
CIS believes that cyber security involves a wide range of risk mitigation measures including employee training, IT devices, procedural practices and relevant insurance policies.