7. Executive Leadership-led Risk Management

How can we sustain executive-level attention to this critical issue, and institutionalize cyber as an on-going component of agency risk management practices, not just a side-bar activity?

Endorse existing ideas by voting for them. YOU MUST BE LOGGED ON TO VOTE.

Showing 1 ideas for tag "technical"
kudos icon +

7. Executive Leadership-led Risk Management

Independent Organizational Assessment

Organizations in government tend to be overly optimistic about their capabilities and performance, reference OPM's epic failure. Cyber security is too important to be left to self-assessments. An organization should be externally assessed and rated by unbiased and competent evaluators. Risk is only one aspect of management performance. Governance, culture and technical competence are but three key facets that determine... more »

Voting

3 votes
Public Input