Authority
Governmental or other 'official' trade or professional membership bodies providing direction, oversight and guidance on cybersecurity matters though laws, regulations, codes of conduct, standards, methods, rules and requirements. These are important governance and assurance mechanisms, supporting the interests of society at large and of the sectors, organisations and individuals within their remit.
The book has value for:
Drafting, reviewing and updating laws, regs, guidelines, policies etc. providing direction and guidance on cybersecurity-related topics (e.g. accuracy, completeness and timeliness of financial reporting i.e. integrity and availability of corporate financial information; protection of personal information for privacy i.e. confidentiality, integrity, ownership and control).
Clarifying and explaining potentially ambiguous or complex requirements and constraints in plain language.
Using correct and appropriate terminology, while avoiding 'bad language' to reduce confusion, preferably without resorting to obtuse 'legalese'.
Scoping and addressing the boundaries with related areas, avoiding gaps and conflicts, aligning or collaborating with specialists in other fields.
Thinking strategically, preparing for changes arising from new technologies such as Artificial Intelligence and evolving threats such as war and cybercrime.