JOURNAL ARTICLE
Boards Are Falling Short on Cybersecurity.
Published In: Harvard Business Review Digital Articles, 2026. P. 1 1 of 3
Database: Business Source Ultimate 2 of 3
Authored By: Proudfoot, Jeffrey; Madnick, Stuart 3 of 3
Abstract
The article focuses on the shortcomings of corporate boards in effectively governing cybersecurity despite increased attention to the issue. It identifies three main failures: a lack of cybersecurity expertise on boards, insufficient consideration of AI-related security risks amid enthusiasm for AI’s strategic potential, and the mistaken belief that regulatory compliance equates to robust security. The authors recommend that boards prioritize selecting and overseeing strong cybersecurity executives rather than becoming technical experts themselves, integrate AI risk oversight alongside strategic discussions, and treat cybersecurity as a core resilience and competitive issue beyond mere compliance. These shifts aim to enhance boards’ ability to manage evolving cyber threats and align cybersecurity governance with broader organizational objectives. [Extracted from the article]
Additional Information
- Source:Harvard Business Review Digital Articles. 2026/04, p1
- Document Type:Article
- Subject Area:Information Technology
- Publication Date:2026
- Accession Number:192806575
- Copyright Statement:Copyright 2026 Harvard Business Publishing. All Rights Reserved. Additional restrictions may apply including the use of this content as assigned course material. Please consult your institution's librarian about any restrictions that might apply under the license with your institution. For more information and teaching resources from Harvard Business Publishing including Harvard Business School Cases, eLearning products, and business simulations please visit hbsp.harvard.edu. (Copyright applies to all Abstracts.)
Looking to go deeper into this topic? Look for more articles on EBSCOhost.