ISA to release handbook helping UK boards of directors manage cybersecurity risks

April 5, 2018

Larry Clinton
President and CEO, Internet Security Alliance
(202) 236-0001


(WASHINGTON, D.C.) – The Internet Security Alliance (ISA) announced today that it will release a new handbook to assist corporate boards of directors in the United Kingdom in managing their companies’ cybersecurity risk.

Based on the U.S. Cyber-Risk Handbook from the National Association of Corporate Directors (NACD), the new handbook will be unveiled at NACD’s Global Cyber Forum in Geneva, Switzerland on April 17-18.

The new handbook – which was developed in partnership with American International Group, Inc. (AIG) –offers boards important information about the legal landscape for cybersecurity in the UK, including the impact of the European Union’s General Data Protection Regulation and other emerging legal and regulatory trends in UK, including transparency requirements and security standards.

“Having an effective cybersecurity risk-management program requires an understanding of the country-specific legal requirements and accepted standards and best practices used in the UK,” said ISA President Larry Clinton. “This new handbook will help UK corporate boards navigate the challenges they face in the UK’s unique cybersecurity environment.”

The handbook addresses sanctions that are in place for non-compliance with cybersecurity requirements in the UK, as well as considerations for publicly traded companies, corporate governance, and the role of legal counsel on cybersecurity issues. It also details how corporate boards can create an overall approach to cyber-risk management at their companies, among other topics.

The UK handbook will be released alongside a German edition of the Cyber-Risk Handbook, which was announced on March 30 and has received the endorsement of the German government’s Alliance for Cyber Security.


About ISA: The Internet Security Alliance (ISA) is a trade association with members from virtually every critical industry sector. ISA’s mission is to integrate advanced technology with economics and public policy to create a sustainable system of cybersecurity. ISA pursues three goals: thought leadership, policy advocacy andpromoting sound security practices. ISA’s “Cybersecurity Social Contract” has been embraced as the model for government policy by both Republicans and Democrats. ISA also developed the Cyber Risk Handbook for the National Association of Corporate Directors. For more information about ISA, please visit or 703-907-7090.



Downloadable copy (PDF)