back to article Most FTSE 100 boards kept in the dark about cyber resilience plans

Only one in five FTSE 100 companies disclose testing of online business protection plans. Most (57 per cent) of FTSE 100 companies talk about their overall crisis management, contingency or disaster recovery plans within their annual reports but few in comparison mention cybersecurity. Just 21 per cent of UK Blue Chip …

  1. Doctor Syntax Silver badge

    "Just 21 per cent of UK Blue Chip businesses regularly share security updates with the board at least twice a year"

    Or to put it another way, 79% of boards don't demand regular security updates.

    I'd like to think that this level of neglect would raise questions from the big institutional investors but clearly not.

    1. Anonymous Coward
      Anonymous Coward

      Or to put it another way, 79% of boards don't demand regular security updates.

      More likely 79% of boards don't have sufficient technical expertise or interest to understand the question. I'd also like to note that after about four hours, this article had three/four comments. Even within the commentariat, there's insufficient interest. Of course, when it all goes wrong, there will be plenty queuing up to criticise.

      In all things, making stuff work is dull hard work (and often unrewarded).

  2. John Miles

    Plausible Deniability

    Not told anything, then how can it be your fault - just leave it to someone junior who when they couldn't cope on the pennies you gave them to do the task you can then sack to appease the markets and shareholders who rarely ask why you didn't have a finger on pulse as you are meant to.

    1. Tom 7 Silver badge

      Re: Plausible Deniability

      They can always be told and then they'd have to admit they didnt understand a word of it.

  3. Jay 2

    The catch is to put over any such info in a simple non-threatening way so that the board members don't get bored and fall asleep or completely freak out as they don't quite comprehend what has been presented.

  4. handleoclast

    If you don't test your company's security

    Somebody will be along shortly to do it for you.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021