The board of directors or executive committee plans for major cybersecurity incidents, including by participating in exercises, and understand their duties in relation to such cybersecurity incidents.
Topic
Planning for major cybersecurity incidents
Applicable to
Non Classified, Official, Protected, Secret, Top Secret
History
Mar 2025
The board of directors or executive committee plans for major cybersecurity incidents, including by participating in exercises, and understand their duties in relation to such cybersecurity incidents.
A new control was added recommending that the board of directors or executive committee plans for major cybersecurity incidents, including by participating in exercises, and understand their duties in relation to such cybersecurity incidents.