How to Manage Cyber Risks Effectively

CSO should be asking themselves if the worst happened, could senior leaders honestly tell customers or partners that they've done everything that was reasonably expected? They also need to be asking, and this is very important because of the speed at which everything changes in this space, are we actually prepared for the future? Are we discussing our cybersecurity-induced risks and evaluating plans to manage those risks on an ongoing basis? One of the things I was talking about just the other week to a group of board directors was about the need to formulate a strategy for dealing with things like ransomware. And that took us into a discussion as well around things like cyber insurance. Does that have an effective role? And if so