惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

月光博客
月光博客
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
N
Netflix TechBlog - Medium
大猫的无限游戏
大猫的无限游戏
爱范儿
爱范儿
Martin Fowler
Martin Fowler
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
The Register - Security
The Register - Security
IT之家
IT之家
博客园_首页
Microsoft Security Blog
Microsoft Security Blog
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
博客园 - 三生石上(FineUI控件)
I
InfoQ
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
Jina AI
Jina AI
Apple Machine Learning Research
Apple Machine Learning Research
M
MIT News - Artificial intelligence
博客园 - Franky
C
Check Point Blog
T
The Blog of Author Tim Ferriss
V
Visual Studio Blog
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
T
Tailwind CSS Blog
Recent Announcements
Recent Announcements
云风的 BLOG
云风的 BLOG
美团技术团队
The Cloudflare Blog
Y
Y Combinator Blog
H
Hackread – Cybersecurity News, Data Breaches, AI and More
MyScale Blog
MyScale Blog
The GitHub Blog
The GitHub Blog
D
DataBreaches.Net
Google DeepMind News
Google DeepMind News
V
V2EX
aimingoo的专栏
aimingoo的专栏
GbyAI
GbyAI
G
Google Developers Blog
S
SegmentFault 最新的问题
Hugging Face - Blog
Hugging Face - Blog
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
U
Unit 42
罗磊的独立博客
量子位
MongoDB | Blog
MongoDB | Blog
Last Week in AI
Last Week in AI
Stack Overflow Blog
Stack Overflow Blog
小众软件
小众软件
D
Docker
人人都是产品经理
人人都是产品经理

Forbes - Innovation

Why Do Humans Have Fingerprints? Hint: It’s Not What You Think Booking.com Confirms Data Breach, Reservation PIN Codes Changed Why Major News Sites Are Blocking The Internet Archive’s Wayback Machine iPhone Fold Release Date: New Report Details Frustrating Apple News Comet Tracker: How To See Pan-STARRS And Three Planets On Wednesday NYT Mini Crossword Today: Tuesday, April 14 Hints And Answers Today’s NYT Strands Hints, Spangram, Answers: Tuesday, April 14 (It’s A Little Unclear) Today’s Wordle #1760 Hints And Answer For Tuesday, April 14 Most Of The Microplastics In Urban Air Come From Tires Today’s Wordle #1759 Hints And Answer For Monday, April 13 NYT Mini Crossword Today: Monday, April 13 Hints And Answers NYT Pips Today: Hints, Answers And Walkthrough For Monday, April 13 The YC Chief Who Codes 10,000 Lines A Day Has A Simple Secret Samsung Expands One UI 8.5 Beta To More Galaxy Owners Why You Should Stop Using Your iPhone If It’s On This List Chamath Says Firms That Treat AI As A Strategy Hand Rivals Their Edge 3 Unexpected Habits Of Secure Couples, By A Psychologist The First Lamp That Folds Your Clothes Samsung’s Disappointing Price Update For Galaxy Phone Buyers 3 Subtle Signs Someone Is Falling In Love With You, By A Psychologist Do Mantis Shrimp See More Colors Than Humans? A Biologist Explains NYT Connections Answers Explained For Monday, April 13 (#1,037) NYT Connections Hints Today: Monday, April 13 Clues And Answers (#1,037) LEGO Luigi & Mach 8 (72050) Review: 2026’s Best Set Yet? Marc Andreessen Says AI Productivity Will Trigger A Hiring Boom 3D Printing Is The Ultimate Hack To Reduce Household Spending Apple iPhone Fold: Striking Design Revealed In Leaked Photos Apple Smart Glasses: New Leak Reveals A Major Design Twist To Beat Meta Tested: The AI Coming To The Rivian R2 Quordle Hints Today: Monday, April 13 Clues And Answers Companies And H-1B Employees Endure Immigration Waits At Consulates 3 Easy Ways To Turn Anxiety Into Sustained Focus, By A Psychologist Here’s The Most Affordable Humanoid Robot You Can Buy Now UFC 327 Results: 5 Biggest Takeaways From A Wild Night In Miami UFC 327 Results, Bonus Winners, Highlights And Reactions Dana White Announces Huge New Fight For UFC White House Today’s NYT Strands Hints, Spangram, Answers: Sunday, April 12 (Get Ready) Tesla ‘Model 2’ Rises From The Ashes Today’s Wordle #1758 Hints And Answer For Sunday, April 12 NYT Pips Today: Hints, Answers And Walkthrough For Sunday, April 12 Tyson Fury Vs. Arslanbek Mahkmudov Results: Highlights and Reaction NYT Mini Crossword Today: Sunday, April 12 Hints And Answers How Shadow AI Culture Is Destroying Your Business Venture Capital Funds That Market Like Startups Win More Deals Conor Benn Vs. Regis Prograis Results: Highlights and Reaction Samsung’s Disappointing Price Update For Galaxy Phone Buyers Artemis Reached The Moon. The Grid Can Reach The 21st Century A Biologist Explains How Archerfish Shoot Down Prey. Hint: Their Aim Rivals Human Throwing Is It Time For Apple To Forget About The MacBook Air NYT Connections Hints Today: Sunday, April 12 Clues And Answers (#1036) Trump’s 2027 Budget To Reshape U.S. Environmental And Energy Policy CDC Delays Reporting Of COVID-19 Vaccine Benefits—Here’s What To Know Oura Has Designed A Solution To A Big Smart Ring Problem Netflix’s Best New Show Has A Near-Perfect 95% Rotten Tomatoes Score Coachella 2026 Is Being Taken Over By Creator Streams Quordle Hints Today: Sunday, April 12 Clues And Answers This Startup Wants To Use AI To Help Digitize History How To Get The Best Shield In ‘Crimson Desert’ Microsoft Venom Attack Targets C-Suite Executives ‘Maul: Shadow Lord’ Sets Even More Star Wars Rotten Tomatoes Records 3 Ways Happy Couples Argue Differently, By A Psychologist Success For Leapmotor Might Have Negatives For Stellantis New Names Surface As Potential Rogue And Wonder Woman In The MCU And DCU 4 Reasons Artemis Mission Matters Even If You Think It Is Wasteful Fast ‘Crimson Desert’ Patch Adds New Moves, Shield Hiding And One Great Feature Why Do Humans Blush? An Evolutionary Biologist Explains The Signal We Can’t Control Apple iPhone Fold: Striking Design Revealed In Leaked Photos Adobe Attacks Underway—Windows And Mac Users Given 72 Hours To Update iOS 26.4.1 Release: Crucial iPhone Feature Update Arrives, But No Security Fix Fury vs. Makhmudov Full Card, Ring Walk Times and How to Watch Can’t Stand Liquid Glass? This New Hidden iPhone Setting Is A Game-Changer Test-Driving The 2026 Changan Deepal S05: Italian Style Made In China NSA Warning—Reboot Your Internet Router Now Ways That Human-AI Collaboration Slides People Into ‘AI Brain Fry’ And Cognitive Downturns Stop Using These Networks—Google, NSA And TSA Warn NASA Changes Moon Plan: Landing Now Depends On SpaceX Or Blue Origin Samsung Expands One UI 8.5 Beta To More Galaxy Owners The Evolution Of Programmable Hardware At Xilinx NYT Mini Today: Saturday, April 11 Hints And Answers Today’s NYT Strands Hints, Spangram, Answers: Saturday, April 11 (You’re Putting Me On) Splashdown! NASA’s Artemis II Returns To Earth After Moon Mission Attention Is All You Need. The Human Kind Is Still The One That Counts Today’s Wordle #1757 Hints And Answer For Saturday, April 11 NYT Pips Today: Hints, Answers And Walkthrough For Saturday, April 11 Android Circuit: Galaxy S27 Pro Emerges, Honor 600 Pre-Order Offers, Pixel 11 Display Leaks Apple Loop: iPhone 18 Pro Leak, Urgent iOS Update, MacBook Neo Issues Morgan Stanley Has Mostly Positive Outlook On Tesla Robotaxi, FSD V15 Running Out Of AI Tokens Faster Than Ever? Here’s Why CoreWeave Shares Pop 13% After Anthropic Deal ‘Euphoria’ Season 3’s Rotten Tomatoes Score Crashes, Has Lost Key Player People Don’t Agree On What AI Can Do, But They Don’t Even Use The Same Product ‘Overwhelming’—Google Issues Gemini Update For Gmail Users NYT Connections Hints Today: Saturday, April 11 Clues And Answers (#1035) Quordle Hints Today: Saturday, April 11 Clues And Answers The Costly Dream Of Space-Based AI Infrastructure Can You See The Watcher In This ‘Daredevil: Born Again’ Shot? Adobe Attacks Underway—Windows And Mac Users Given 72 Hours To Update You Just Watched The Backdoor Pilot For ‘The Pitt: Night Shift’ Are Nicotine Pouches Like Zyn And VELO Safe To Use? A Doctor Answers Human Resources (HR) Is The Key To AI Success Per WalkMe ( SAP)
Developing An Executive Cybersecurity Strategy For Directors
Keegan Crage · 2026-05-21 · via Forbes - Innovation

Keegan Crage | Owner, TechBrain AU — ISO 27001 certified, cyber security & AI governance partner | Oxford MSc Cyber Security (in progress).

getty

The regulatory tide has already turned. Has enterprise cyber posture kept pace?

A director reviews a board pack at the kitchen table, on a personal laptop, over the home Wi-Fi. But the corporate SIEM sees nothing. The corporate SOC raises no alerts. This is the board's unowned risk, and it sits on the kitchen table. Many cyber programs built in the last decade falter at the corporate boundary. Director liability could walk out with the executive every evening.

The U.S. SEC has already tightened cyber disclosure rules for companies. Australia is on the same arc, with the Corporations Act 2001 placing a statutory duty on directors to act with reasonable care and diligence. The ASIC has treated cyber as material since the Privacy Act 1988 Notifiable Data Breach Scheme can extend to director-held personal data.

The enterprise security program isn't behind, but it wasn't scoped for this. The moment it clicked for me was when I found out that a chair had been using a personal Gmail account for board correspondence for the better part of two years because it was just easier on their phone. Nobody had flagged it. Nobody had even thought to look. That was the moment I realized the risk model had a human-shaped hole in it that no amount of corporate tooling was ever going to close.

The Architectural Boundary​

Corporate SOC, SIEM and MDR platforms are working as designed; they are staffed and tooled for the corporate-owned attack surface. But the executive's kitchen-bench laptop, the home router and the family iPad are all owned outside it. None of it is in scope. The gap is an architectural boundary.

Ponemon Institute's 2025 research, surveying 586 security professionals, found 51% of organizations had seen attacks targeting executives or family members, up from 42% in 2023. GetApp's 2024 research puts the figure at 72% of senior executives targeted in the prior 18 months. In mid-market boardrooms, the number stops being alarming. It becomes predictive.

The Australian Signals Directorate's 2024-25 report documents state-sponsored groups turning home routers into botnet infrastructure. Every family-shared device still signed in to work (laptop, tablet or inherited phone) could widen the hijack surface. Personal email used for board correspondence has the potential to become a wire-fraud vehicle in waiting.

Every one of these is a claim against the director as opposed to a ticket for IT to resolve. Boards still briefed through the IT subcommittee on a lagging audit cycle may not be hearing the signal.​

For most directors hearing this, the first reaction is recognition as they see themselves in the scenario, followed immediately by discomfort. There's almost always a beat where they realize this is the first time someone has spoken to them about cyber as something that belongs to them personally, not to the IT team, not to the CISO. Then the discomfort sets in, because they can see exactly where that logic leads.

Establishing A Better Cybersecurity Posture At The Director Level

Companies need to start treating executive personal cyber as its own program, owned at board level, with its own scope and budget line. It doesn't live inside the CISO's remit: Legal, privacy and ethical issues prevent corporate IT from operating inside a director's personal environment.

Any program fails if there isn't buy-in. An executive who silently disables protections ends the program. A seamless, trusted relationship is what holds it together. Protection and surveillance have to be separated architecturally. Get it right, and the strategy does what it needs to without peering into the executive's personal life. Get it wrong? No director tolerates the program past the second month.

Start with a prepared personal-risk audit for each director, mapping the full household digital footprint (personal devices, shared accounts, home networks and who has access to). That inventory becomes your program scope, and it could surface the personal email accounts or kitchen-table laptops no corporate SIEM has ever seen along with devices such as home security cameras no director ever considered was a corporate cybersecurity risk. Ownership sits with the general counsel or chief risk officer, not the CISO.

From that baseline, protection needs to operate across four domains simultaneously: personal privacy foundations (dark web monitoring, credential exposure), home network security with active penetration testing, device-level hardening and malware protection, and incident response. The executive's household is a unit of protection. Any program that covers only the individual and ignores shared devices at home could leave potential entry points wide open.

Finally, build the evidence layer from Day One. Every control implemented should produce documentation that maps directly to D&O and cyber insurer renewal questionnaires. An annually certified, audit-ready record of your security posture underpins a strong a governance strategy.

Executive Cybersecurity And Governance

Stop asking the CISO to find the budget. Executive personal cyber is a governance category that runs adjacent to the enterprise cyber program, not nested inside it.​ Executives should put a line in the board-level risk budget before anyone's written a scope document, because if it has to compete internally with the enterprise program, it loses every single time, and quietly, so nobody notices until something goes wrong.​


Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?