Support our nonpartisan, nonprofit research and insights that help leaders address societal challenges.Donate
Cyberattacks are inevitable, thanks to the internet’s intrinsic vulnerabilities and the rapid advance of technology: attackers everywhere seem to be two steps ahead of defense capabilities. But companies can mitigate damage. Enterprise-wide risk management starts with a holistic plan, a board that includes cyber-savvy members, and a leadership team that knows how much risk the company can tolerate. Defending against and recovering from these attacks is not simply a job for IT, but a concerted effort that involves every function from HR to brand management.