Board members realize how critical security and risk management is and have started to ask leaders more complex and nuanced questions. These findings help security and risk management leaders decipher five categories of questions they must be prepared to answer at any board or executive meeting.
Security leaders need to be able to give the board something that they care about and that is meaningful to them. Beyond individual passions and concerns, boards collectively generally care about three things:
- Revenue/mission: Operating or nonoperating income and enhancing nonrevenue mission objectives
- Cost: Future cost avoidance and an ediate decrease in operating expenses
- Risk: Financial, market, regulatory compliance and security, innovation, brand, and reputation