BS 31111:2018

$142.49

Cyber risk and resilience. Guidance for the governing body and executive management

Published By	Publication Date	Number of Pages
BSI	2018	28

Guaranteed Safe Checkout

Categories: 35.040.01 - Information coding in general, BSI

If you have any questions, feel free to reach out to our online customer service team by clicking on the bottom right corner. We’re here to assist you 24/7.
Email:[email protected]

Description

This British Standard provides guidance on cyber risk management and resilience for societal, regulatory, governance and behavioural risks that need to be understood, assessed, quantified, qualified and addressed, and overseen by the governing body and executive management of an organization.

This British Standard helps the governing body and executive management manage cyber risk and resilience, explaining the various approaches to making an organization cyber resilient. It is applicable to public, private and not-for-profit organizations of all sizes, and provides guidance on the essential features of cyber risk and resilience management to ensure that cyber resilience is built into decision making.

This is not a technical cyber security or risk management standard. It is intended for a non-technical audience, although some of the relevant standards with more technical content are listed in Annex A.

PDF Catalog

PDF Pages	PDF Title
4	Foreword
5	0 Introduction 0.1 General 0.2 Purpose and benefits of this British Standard
6	1 Scope 2 Normative references
7	3 Terms and definitions
9	4 Building cyber resilience: Core principles 4.1 General
10	Figure 1 — Building cyber resilience 4.2 Maximizing potential benefits while minimizing threats
12	4.3 Capabilities for a cyber-resilient organization 5 The organizational foundations for cyber risk and resilience
13	5.1 Culture 5.2 Ownership and leadership 5.3 Trust and transparency 5.4 Decision making
14	5.5 Regulation 6 Building cyber risk management and resilience capability 6.1 General 6.2 Risk management 6.3 Collaboration and engagement
15	6.4 Business transformation 6.5 Adaptability and agility 6.6 Monitoring and threat intelligence 6.7 Response and planning 7 Assessing the resilience of the organization 7.1 General
16	7.2 Maturity model/assessment framework 7.3 Evaluation 7.4 Monitoring
17	7.5 Communication 7.6 Assurance 7.7 Awareness and training
18	7.8 Continual review and improvement Figure 2 — Developing resilience
19	Annex A (informative) Useful documents
21	Annex B (informative) Suggested assessment questions for executive management and/or governing body
24	Annex C (normative) Embedding assurance and governance
25	Annex D (informative) Understanding cyber culture
26	Bibliography

Additional information

Status	Confirmed
Pages	28
Publication Date	2018-03-05
ISBN	978 0 580 94482 6
Standard Number	BS 31111:2018
Title	Cyber risk and resilience. Guidance for the governing body and executive management
Descriptors	Resilience, Data security, Risk assessment, Enterprises, Computer networks, Security, Data storage protection, Risk analysis, Organizations, Data processing, Computers
Publisher	BSI
Committee	RM/1
ICS Codes	35.040.01 - Information coding in general

Preview PDF


PDF Format	Searchable	Printable	Preview Now

BS 31111:2018

PDF Catalog

Related products