Cybersecurity is a high-level item on leaders' agenda across all sectors. Business, governments and individuals are rapidly taking advantage of faster, cheaper digital technologies to deliver an unprecedented array of social and economic benefits. However, without tools and partnership aimed at solving or mitigating cyber challenges, leaders in business, government, and across society cannot pursue the benefits of digitization with confidence.
The Forum aims to help leaders identify and address these emerging business and social risks so that the benefits of digitization can be pursued with confidence. The overall objective of this work is to normalize cyber risks through the development of top-level leadership awareness, understanding and action on cyber risks. While leaders are now generally aware of the risks, we can observe a wide range of maturity in terms of understanding and action across different industry sectors and regions.
The overall goal of the Forum's cyber security/resilience work is to normalize cyber risks. Normalizing cyber risk means that managing those risks should not arouse fear, uncertainty and doubt, but rather that it must become business as usual for individuals, companies, and governments. Even if the landscape of cyber risks is constantly changing, the Forum aims to ensure that we have the institutional and social mechanisms and the normative basis to constantly iterate defences and resiliency measures to manage those risks.
In service of this over-arching goal, the focus for 2017 will be on ensuring adoption of best practices and policies by governance bodies (in companies and government) as well as developing partnerships to support cyber resilience and initiate public-private dialogue around challenges to cyber resilience.
Through a number of multistakeholder working groups the Forum community has already contributed substantially to this space. Some specific outputs have included:
The goal of the Forum’s Cyber Resilience project is to support companies, organizations and governments in implementing tools and entering into partnerships in order to effectively integrate cyber resilience into business and national strategy. Specifically, the project will aim to:
Cyber risk is a systemic challenge and cyber-resilience a public good. Leaders need tools and partnerships to respond to these challenges of digitalization.
The latest cyberattack, which led to outages across the US East Coast, should be a wake-up call regarding the dangers of an insecure IoT.
Dr Michelle Tuveson says we should pay attention to forecasters when it comes to cyber security risk.