[](Cyber%20Security%20Governance%20Principles.pdf) by the Australian Institute of Company Directors and the Cyber Security Cooperative Research Centre, november 2024

The document outlines five key principles for governing organizational cyber resilience:

1. Set clear roles and responsibilities.
2. Develop, implement, and evolve a comprehensive cyber strategy.
3. Embed cyber security in existing risk management practices.
4. Promote a culture of cyber resilience.
5. Plan for a significant cyber security incident.

For each principle the document outlines key points and identifies 'red flags' that indicate low quality or non existent governance.