Security in the Board Room

BitSight EXCHANGE Sound Bites: Reporting to the Board

BitSight | December 10, 2018

In the months since BitSight’s inaugural EXCHANGE forum, we have been digesting and processing the incredible sessions and discussions that came about from this forum. It was a great event that brought together security executives from all over to discuss the challenges they face in their roles every day.

One discussion that stood out was the “Reporting to the Board” panel session, which touched on the Board of Directors’ role in cybersecurity decisions at the corporate level. The panel was moderated by Suraj Srinivasan (Professor, Harvard Business School). The panelists included Ed Brandman (CIO, Kohlberg Kravis Roberts & Co.), Andy Brown (Board of Zscaler & Guidewire), Bijoy Sagar (Chief Digital & Technology Officer, Stryker) and Shelley Leibowitz (Board of Alliance Bernstein & E*TRADE).

Below, Leibowitz shared her thoughts on how Boards typically manage cybersecurity within an organization, and what kind of information they require to have a comprehensive understanding of internal risk.


Additionally, when asked what a risk committee should be examining when it comes to cybersecurity, Leibowitz shared her thoughts as stated below.


Thank you to our speakers on this panel for an extremely informative and insightful discussion.


Read the recap of the inaugural BitSight EXCHANGE forum. 

Suggested Posts

CISO Salaries 2020: Does a Changing Role Demand a Change in Pay?

The role of the chief information security officer (CISO) is undergoing a tectonic shift. 

The first generation of CISOs were high-performing technical professionals promoted to senior leadership. They largely reported to CIOs, and had...


Most Urgent CISO Skills 2020: Reporting, Avoiding Burnout, More

Since the creation of the first CISO role about 25 years ago, the job has changed dramatically. What was once an uncommon position has quickly become standard, with the majority of companies including a cybersecurity-specific role in their...


The Board’s Role in Managing Disruptive Risk: Enter Security Ratings

Today, disruptive risks are an area of focus for corporate directors worldwide. On a global basis, we face disruptions in areas like geopolitical volatility, economic slowdown, emerging technologies, cybersecurity threats, and climate...


Subscribe to get security news and updates in your inbox.