The author begins by explaining how cyber security is focused on creating a secured system, while cyber risk governance is focused on continuing this security indefinitely. It is constantly evolving to stay protected. The author then moves to explain how recent developments in a much more tech focused world resulting from the Covid-19 pandemic has increased the importance of cyber risk governance. Next, the author outlines how every individual in a company is critical in cybersecurity, especially the leaders, who have the power to create a norm among the rest of the employees. Additionally, like the individuals, each policy is also vital. And, “[t]he policies are not static documents but require regular updates to reflect the business’s current security posture and cyber threat landscape” (Chin). Lastly the author stresses the importance of complying to each policy and having each individual participate in training to be more knowledgeable about the cyber policies in each area of work.
