The Cyber Risk Advisory Board operated by KSÖ is responsible for steering the cyber risk
scheme. This board is made up of senior security officers from large critical infrastructure
companies as defined in the NIS Act. In addition, the Cyber Risk Advisory Board also includes
representatives of the relevant NIS authority. This ensures that the requirements of the
CyberRisk Rating are not only state of the art, but also meet the requirements of the security
departments of large companies and the responsible authority. The Cyber Risk Scheme is
continuously reviewed and developed to meet the changing requirements of the cyber security
environment.