Cyber security
-
News and pressThe Global Risks Report 2019: what does it tell PRI signatories?
Published ahead of next week’s Davos, the Global Risks Report provides significant insights into risk to inform government, business and investor action. It asks: is the world sleep walking into a crisis?
-
Reports/Guides
Investor-company dialogue on cyber security: five emerging findings
A recent study by Accenture found that the global average cost of cyber crime has risen from $7.2 million in 2013 to $11.7 million in 2017. Businesses are under pressure to strengthen their cyber security capabilities and be more effective in managing cyber incidents.
-
News and press
PRI steps up engagement on cyber security
The PRI today launched findings on how seriously corporates are taking the issue of cyber security, with the publication of Stepping up governance on cyber security: what is corporate disclosure telling investors?
-
Reports/Guides
Stepping up governance on cyber security
Cyber security risk is real and pervasive, as demonstrated by recent attacks that have put the frighteners on big banks, web service providers, the NHS and even the US intelligence community.
-
Reports/Guides
Corporate disclosure on cyber security governance: key takeaways
While companies generally perceived cyber security as a key organisational risk, very few communicated that they have policies, governance structures and processes that were effective at tackling cyber threats.
-
Reports/Guides
Corporate disclosure on cyber security governance: policy
2. Does the company publicly disclose a privacy and/or data protection policy? 3. Does the policy explicitly cover its entire operations, including third parties?
-
Reports/Guides
Corporate disclosure on cyber security governance: skills and resources
8. Does the company disclose that it has a cyber or information security team and/or dedicated budget? 9. Does the company state that it works with relevant industry initiatives on cyber security and/or has access to internal or external expertise on cyber security? 10. Does the company actively
-
Reports/Guides
Corporate disclosure on cyber security governance: training
11. Does the company provide training on information/cyber security requirements to all employees?
-
Reports/Guides
Corporate disclosure on cyber security governance: processes and procedures
13. Has the company established an incident management plan (including disaster recovery and business continuity)? 14. Has the company disclosed information or cyber security as a key part of its risk assessment/business continuity plan?
-
Reports/Guides
Corporate disclosure on cyber security governance: overview of regulatory landscape
Standards of legislation relating to data protection and cyber security that companies are expected to adhere to vary widely by region. This section provides an overview of key legislation in force across the regions from which the company sample was drawn.
