Cybersecurity governance is a fundamental element of any effective cybersecurity programme. What your organisation calls it doesn’t really matter. But what is important is that there is a top-level acknowledgement of the cybersecurity threat, an understanding of the organisation’s threat profile, and a manifested commitment to protect the organisation in line with that profile.
CRMG will help you get your cybersecurity governance approach right.

Examples of activities we can help you with include:
- Determining your threat profile – including delivering top management briefings/workshops where appropriate – to ascertain the organisation’s risk appetite
- Performing high level and/or more detailed assessments of your current cybersecurity condition
- Identifying a set of prioritised risks that reflect your threat profile
- Writing or enhancing your cybersecurity policy to reflect both prioritised risks (and compliance obligations where required) and mitigating controls
- Ensuring your supplier management processes adequately address cybersecurity
- Alignment of your approach to cybersecurity management with recognised initiatives/standards, such as ‘Cyber Essentials’ and ISO 27001.

If you would like to discuss our Cybersecurity Governance services, please contact us.
Related Content

Related Articles
07.01.2021. Privacy & Data Protection
Data Protection: Beware the danger that lurks beneath
DPO appointed? Tick. Data Protection Impact Assessments conducted? Tick. Subject Access Request process operational? Tick. You’re in good shape, right? Well, in a narrow GDPR sense, you might just be. But beware the data protection illusion...
Read more…
10.12.2020. Information Risk Assessment
Why You’ll Lose the War on Cybercrime with a Poor Cyber Risk Assessment
Hands up all those who think they have a great cyber risk assessment capability in place. You know, one that is embedded within the organisation, produces consistent and trustworthy results...
Read more…
13.11.2020. Cybersecurity, Podcasts
Neurodiversity and Cybersecurity – Untapping a superpower
When you think about cybersecurity, you generally don’t tend to think about people, and you certainly don’t think about the neurodiversity of people. The profession has been battling a skills gap...
Read more…