PwC’s “Ransomware and the board’s role: what you need to know” outlines questions across six topical areas that the board should ask management about its cyber-related practices and policies so that it understands the company’s level of preparedness, response capabilities, and overall cybersecurity strategy to support its effective oversight of ransomware risks. The brief publication also includes a list of considerations to evaluate as part of any ransomware payment demand.