| A few months http://www.fiendishsudoku.com/magic-boxes-slots/ magic boxes slots Due to the evolving nature of the risk, there is a lack of authority discussing the scope of a board但ツツ冱 obligation to address cybersecurity. Obviously, directors但ツツ fiduciary duties will extend to the protection of significant digital assets. The more difficult question to answer is: What are the contours of a director但ツツ冱 fiduciary obligation when it comes to cybersecurity? Can the board simply rely upon its IT department to address cybersecurity, or do directors have an obligation to educate themselves on the nature of their company但ツツ冱 technology? Should boards place responsibility for cybersecurity with the audit committee or establish a separate cybersecurity committee? Should cybersecurity be a topic of every board meeting or addressed only when there is a breach?
|