Cybersecurity Speaker
for Boards of Directors
Mark Lynd has been the CISO presenting to boards and the advisor helping boards ask better questions. As a 5x CIO/CISO, he translates cybersecurity risk into the business language directors need to fulfill their oversight responsibilities. Fee range: $15,000–$50,000+.
Board Directors Now Face Personal Liability for Cybersecurity Oversight Failures.
The SEC's cybersecurity disclosure rules changed the board's relationship with cyber risk permanently. Directors must now demonstrate they exercised reasonable oversight — not just that they received a report. Organizations must disclose material cybersecurity incidents within four business days. Boards must disclose their oversight processes and the expertise of members overseeing cyber risk.
Most board members are not cybersecurity experts. They shouldn't have to be. But they do need to know what questions to ask, what answers to expect, and what red flags to recognize. That's what Mark Lynd delivers.
Having been the CISO presenting to boards and the outside advisor helping boards improve their oversight, Mark understands both sides of the boardroom table. His board briefings are in business language, not technical jargon, and they give directors the framework they need to fulfill their fiduciary duty on cybersecurity.
Cybersecurity Topics for Boards of Directors
Cybersecurity Oversight: What Every Board Director Needs to Know
The current threat landscape in business terms. The board's oversight responsibilities under SEC rules. The questions every director should be asking the CISO. The red flags that indicate inadequate security posture. The difference between a security report and a security program.
Best for: Board retreats, director education programs, annual board meetings, governance committees
Length: 60–90 minutes
AI Risk Governance for the Board
AI is being deployed across every organization. Boards are being asked to oversee AI risk without the frameworks to do it. Mark translates AI risk into board language: liability exposure, regulatory risk, reputational risk, and operational risk. Includes the questions boards should be asking about their organization's AI deployment.
Best for: Board retreats, audit committee meetings, risk committee sessions, governance forums
Length: 45–60 minutes
The SEC Cybersecurity Disclosure Rules: What Boards Must Know
The four-day material incident disclosure requirement. What counts as material. The board oversight disclosure requirements. What expertise the board must demonstrate. How to avoid the personal liability exposure that comes from inadequate oversight documentation.
Best for: Public company boards, audit committees, corporate governance conferences, securities law events
Length: 45–60 minutes
Cyber Insurance Governance: The Board's Role
Boards approve cyber insurance policies without understanding what they cover. Mark walks directors through the governance questions they should be asking: coverage adequacy, exclusions that void coverage, the security controls required to maintain coverage, and the claims process oversight role.
Best for: Board retreats, risk committees, insurance industry governance events
Length: 30–45 minutes
Why Boards Book Mark Lynd
Both sides of the table. Mark has been the CISO presenting to boards and the advisor helping boards improve their oversight. He knows what directors need to hear and what CISOs are afraid to say.
Business language, not technical jargon. Board members are business leaders. Mark translates cyber risk into liability, regulatory exposure, reputational risk, and competitive impact.
5x CIO/CISO. The operational credibility that makes board members take the briefing seriously.
Current regulatory expertise. SEC disclosure rules, EU AI Act, emerging state legislation. Mark keeps boards current on what they're required to know.
Author and thought leader. Three published books, Top 5 global AI thought leader ranking, 130,000+ newsletter subscribers. The credibility that boards expect from an outside expert.
Questions Every Board Should Be Asking Their CISO
What is our current security posture score, and how has it changed in the last 12 months?
When did we last test our incident response plan, and what gaps did we find?
What are the top three threat actors targeting our industry right now?
Does our cyber insurance policy cover a ransomware attack that encrypts our cloud systems?
What AI systems are we deploying, and what governance framework governs them?
If we had a material breach tonight, what would we disclose and when?
Read Mark on Board Cybersecurity Governance
Frequently Asked Questions
What cybersecurity topics does Mark cover for boards?
Board oversight responsibilities, SEC disclosure requirements, AI risk governance, cyber risk as fiduciary duty, how to evaluate CISO reports, ransomware oversight, cyber insurance governance, and building a board-level cybersecurity committee.
Why do boards book Mark Lynd?
He's been on both sides of the boardroom table — as the CISO presenting and as the advisor helping boards ask better questions. He translates technical risk into business language.
What are boards' responsibilities under SEC cybersecurity rules?
Boards must disclose their oversight processes, the expertise of members overseeing cyber risk, and material incidents within four business days. Directors face personal liability for inadequate oversight.
Can Mark deliver a cybersecurity briefing at a board retreat?
Yes. Board retreat briefings are one of his most requested formats — 60–90 minutes in business language covering the threat landscape, oversight responsibilities, and the questions directors should ask.
Book a Cybersecurity Speaker for Your Board
Business language. Fiduciary clarity. The briefing your board needs.
Fee range: $15,000–$50,000+
Formats: Board retreat briefing, committee session, annual meeting keynote
Duration: 30–90 minutes