Pitcher Partners Sydney had proactively engaged a third party to undertake a cyber maturity audit of their organisation. That audit highlighted a number of gaps which prompted the firm to prioritise a cyber uplift programme. At a governance and strategic level, the firm also aimed to better enable the Board in their efforts to enhance their oversight of the firm’s cyber posture, against increased regulatory pressure and Directors’ responsibilities.
The key drivers for Pitcher Partner Sydney’s decision to adopt the Essential 8 Scorecard were:
- Ease of reporting: the Essential 8 Scorecard enables the rapid production of informative and understandable cyber risk reports on the status of security controls, and trends over time, for inclusion in briefing packs for the firm’s Board of Directors.
- Operational verification: the firm’s IT and security teams could access best practice data, ie, data-driven, objective data to reliably manage the effectiveness of the firm’s cyber security controls, all within a couple of clicks.