Boards can help tech firms build cyberagility>
Grant Thornton –
Cyberattacks on tech firms are increasing in frequency and complexity, necessitating a proactive approach to cybersecurity and data protection from board members and investors
The evolving regulatory landscape surrounding AI and data management complicates these issues further
Cybersecurity is now regarded as a strategic investment essential for brand protection
Frameworks, metrics, and consistent reporting are crucial for evaluating cybersecurity maturity and driving effective oversight
Additionally, firms must monitor evolving risks, including obstacles related to data transfers and the increasing use of AI, while building agility in their cybersecurity practices through certifications, automation, and synthetic data.
– Cyber threats are rising in frequency and complexity, particularly affecting midmarket tech firms.
– Boards are increasingly forming subcommittees dedicated to cybersecurity and enhancing their cybersecurity knowledge.
– Establishing frameworks (like NIST) aids firms in measuring their cybersecurity maturity.
– Metrics are important for tracking risk management, and spending on cybersecurity can indicate a competitive advantage.
– Recent regulations are increasing scrutiny on data transfers, requiring compliance to ensure business continuity.
– The use of AI presents unique challenges regarding data collection and management.
– Certifications (ISO/IEC 27001, PCI DSS, etc.) can assess readiness for evolving risks and improve customer confidence.
– Automation is emerging as a pivotal tool in enhancing cybersecurity efficiency and effectiveness.
– Synthetic data can mitigate risks associated with using real data for AI training in regulated industries.
– Continuous learning and improvement are essential for maintaining cybersecurity maturity and agility.
Link: https://www.grantthornton.com/insights/articles/technology/2025/boards-can-help-tech-firms-build-cyberagility