BS 31111:2018

This standard BS 31111:2018 Cyber risk and resilience. Guidance for the governing body and executive management is classified in these ICS categories:

• 35.040.01 Information coding in general

This British Standard provides guidance on cyber risk management and resilience for societal, regulatory, governance and behavioural risks that need to be understood, assessed, quantified, qualified and addressed, and overseen by the governing body and executive management of an organization.

This British Standard helps the governing body and executive management manage cyber risk and resilience, explaining the various approaches to making an organization cyber resilient. It is applicable to public, private and not-for-profit organizations of all sizes, and provides guidance on the essential features of cyber risk and resilience management to ensure that cyber resilience is built into decision making.

This is not a technical cyber security or risk management standard. It is intended for a non-technical audience, although some of the relevant standards with more technical content are listed in Annex A.