The CRSA Forum met on 17 January 2020 at the IRM’s office in London to spend the day discussing how directors and Boards might be helped to understand the risks around cyber-security. Surveys of Boards suggest that, despite the well-known risks, few Boards have the skills or knowledge to assess or deal with cyber risk. The event, chaired by Paul Moxey of the CRSA Forum and SAMI Consulting, was hosted by Carolyn Williams, Director of Corporate Relations at the IRM.

This report focuses on the findings of the meeting.