Directors increasingly view cybersecurity as an enterprise-wide risk issue.
Taking a “compliance approach” to security (doing the minimum to comply with NERC CIP) may not be the most effective use of resources given potential operational and reputational risks.
In an open letter to directors, IBM’s energy security lead recommends appointing a senior executive with authority to effect cultural change.
Achieving security requires a new office in the C-suite. An open letter to utility directors.