Public corporations have mostly ignored SEC regs published years ago for improving cybersecurity governance. And while the requirements can be difficult to satisfy, companies that have made the effort created nearly four times their shareholder value compared to those that haven’t. That’s the conclusion of a new survey jointly conducted by Bitsight and Diligent Institute, entitled “Cybersecurity, Audit, and the Board.” According to the Bitsight report, having separate board committees focused on specialized risk and audit compliance produces the best outcomes.
You can read my analysis of this report for Dark Reading here.