<img src="https://secure.leadforensics.com/85060.png" style="display:none;">

Understanding and mitigating cyber risk: Where do risk managers start?

the_threat_from_cyber_riskIf you attended or read reports from the RIMS annual conference in Denver in April or the AIRMIC conference in Birmingham, England, a few weeks ago, it won’t come as news to you that risk managers are being exhorted to take greater ownership of cyber risk. I seem to be seeing more and more articles with headlines like “Risk managers urged to play greater role in cyber risk management.”

There seems to be a consensus building that managing cyber risk should no longer be the responsibility solely of information security and information technology teams. The cover story in Risk & Insurance’s April issue, “Cyber: The New CAT,” put this new reality bluntly and prominently, right below the headline: “In every industry and at every company size, cyber risk is a foundation-level exposure that every business must confront—one that must be viewed with the same gravity as a company’s property, liability or workers’ comp risks [emphasis added].”

Topics: enterprise risk management Exposure and Asset Management