BS 31111 "Cyber risk and resilience - guidance for the governing body and executive management" has now been published by the British Standard's Institution (BSI).

Unlike other guidance documents in this arena, this standard focuses on the strategic issues and considerations that an organization's leaders will need to consider to build effective cyber risk and resilience capabilities.

Also the new standard focusses on the importance of appropriate and proportional risk management practices, which are required to manage the broad spectrum of risks that emanate from cyber operations, for any organization.

This standard provides a refreshing new slant on the pivotal issues and it avoids the "nuts and bolts" or granular approach that may be found in many other guidance documents and standards. It is also designed to complement the guidance contained in those other standards, such as NIST, ISO 27001 and BS 65000.

It's not cheap to purchase, but it does provide value for money, and it will be interesting to see how the industry reacts to this new perspective on dealing with the challenges arising from cyber risks.