CYBERSECURITY
Addresses the CFO’s role in cyber governance, from understanding the threat landscape and quantifying cyber risk to managing cyber insurance, the CISO relationship, and compliance frameworks such as SOC 2 and ISO 27001. It also covers ransomware, incident response, M&A cyber due diligence, board reporting, and cyber budget construction.
The CFO’s Cyber Governance Mandate
Why Cybersecurity Is a Financial Governance Obligation, Not a Technology Problem
Understanding the Threat Landscape
What CFOs Must Know About How Attacks Work, Who Conducts Them, and What They Target
The Cyber Risk Quantification Framework
How to Build, Maintain, and Present the ALE Model That Governs All Cyber Decisions
Cyber Insurance
Buying, Structuring, and Claiming the CFO's Most Complex Insurance Asset
The CISO Relationship
Governance, Budget, Accountability, and the Financial Case for the Security Function
SOC 2, ISO 27001, and Compliance Frameworks
The CFO's Financial Governance of Security Certification Programmes
Third-Party and Vendor Cyber Risk
Managing the Supply Chain Cyber Risk That Your Own Controls Cannot Protect Against
Incident Response
The CFO's Financial Playbook for the First 72 Hours and Beyond
Ransomware
Negotiation, Payment, Recovery Economics, and the CFO's Decision Framework
Cyber and M&A
Due Diligence, Integration Risk, and the Hidden Liabilities That Change Deal Value
Master Summary and Series Diagnostic Index
Building the Governance Communication That Converts Briefing into Oversight
Regulatory Compliance
SEC, GDPR, CCPA, HIPAA, and the CFO's Financial Governance of Cyber Regulation
Building the Cyber Budget
ROI-Based Prioritisation, Multi-Year Evolution, and the Insurance vs Controls Allocation
Three Cyber Case Studies
The SOC 2 Deal, the Vendor Failure, and the Insurance Claim That Almost Did Not Pay
Master Summary and Series Diagnostic Index
50 Core Concepts, 12 Frameworks, and the CFO's Cyber Governance Obligation