Financial Services Ireland

Thought Leadership

Beating cyber crime

Read more


Security Program Management from the Board’s perspective

Most organisations struggle to keep pace with the breakneck velocity of these changing technologies and threats, creating hazardous gaps between the true risks that threaten their viability and their ability to respond and mitigate these risks effectively.

It’s often hard for Board members to grasp why it’s so important to allocate limited funds and precious resources preparing to fight something unknown – but all companies are at risk of cyber attacks. Organisations can benefit from an objective assessment of their information security programs and structures via EY’s Security Program Management approach, starting with a maturity assessment of their existing cyber risk situation.

SPM is the framework for the processes, people and technology that an organisation uses to establish, implement, operate, monitor, review, maintain and improve a security program within the context of an organisation’s overall business objectives and activities.