Breakfast Briefing: Closing the Cyber Risk Gap

Cyber resilience isn’t built on technology alone, it depends on how well cyber risk is understood, owned, and acted on.

Many boards have defined their organisation’s risk appetite, but the leap from principle to practice is still wide. CISOs are often left to interpret broad board-level statements and translate them into real-time security decisions. Meanwhile, operational teams face shifting threats, competing priorities, and relentless pressure to act fast.

The result: decisions are shaped by urgency more than alignment, and the connection between declared appetite and real-world exposure remains blurred.

Join us for an executive breakfast and boardroom discussion at 20 Stories in Manchester.

We’ll explore how to close that gap.

Nick Prescott, CISO at Norgine, will examine why aligning board-defined cyber risk appetite with operational reality is becoming a critical priority for CISOs.
Paul Cragg, CTO at NormCyber, will show how leading organisations are turning appetite from a static statement into a living framework that actively guides prioritisation, shapes decisions, and strengthens resilience across the enterprise.

Who Should Attend

CISOs, CTOs, CIOs, COOs and senior security leaders who want to embed risk appetite into day-to-day cyber operations
Risk, compliance and governance leaders aiming to connect policy with operational execution

Register Now

Spaces are limited. Reserve your place and join a high-level conversation on how to align cyber risk appetite with real-world operations.

Bridging the Cyber Risk Gap: Turning Board Appetite into Action

Cyber resilience isn’t built on technology alone, it depends on how well cyber risk is understood, owned, and acted on.

Join us for an executive breakfast and boardroom discussion at 20 Stories in Manchester.

We’ll explore how to close that gap.

Who Should Attend

Register Now

More of the latest insights & articles.