Recommendations for Advancing Cybersecurity Governance in the Boardroom to Address Persistent and Emerging Challenges

Authors

• Jeffrey G. Proudfoot
• W. Alec Cram
• Stuart Madnick
• Michael Coden

Abstract

Cyber risk has emerged as a particularly urgent concern due to its potential for existential disruption and mounting regulatory pressures. Despite corporate boards’ increased attention to cyber risk, old challenges persist as new threats emerge. Our 27 hours of interviews with 42 board directors, board advisors and board-facing executives identified two core types of governance challenges: (1) internal structural issues and (2) external cyber threats. For each challenge, we offer expert-backed guidance on how to anticipate, prepare and respond. We conclude with challenges we believe must still be addressed.

Recommended Citation

Proudfoot, Jeffrey G.; Cram, W. Alec; Madnick, Stuart; and Coden, Michael (2026) "Recommendations for Advancing Cybersecurity Governance in the Boardroom to Address Persistent and Emerging Challenges," MIS Quarterly Executive: Vol. 25: Iss. 2, Article 3.
Available at: https://aisel.aisnet.org/misqe/vol25/iss2/3