Eskenzi PR Eskenzi PR
  • About Us
Tuesday, 20 April, 2021
IT Security Guru
Eskenzi PR
  • Home
  • Features
  • Insight
  • Events
    • Women in Cyber 2020
    • Women in Cyber 2020 [SPONSORS]
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Events
    • Women in Cyber 2020
    • Women in Cyber 2020 [SPONSORS]
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
IT Security Guru
No Result
View All Result

Boards still not grasping cyber threats, say IT decision makers

by The Gurus
June 1, 2017
in Editor's News
Share on FacebookShare on Twitter

Senior management are risking their companies by not taking cyber security seriously
Key decision makers do not have confidence in their Boards’ ability to manage cyber security threats, according to the latest cyber security analysis from Control Risks. The global ‘Cyber Security Landscape’ report of IT and Business decision makers found that almost half of respondents (46%) reported they believe their organisation’s board-level executives do not take cyber security as seriously as they should. This is despite 77% of respondents citing the C- suite, rather than the historic owner, the IT department, as being most accountable for cyber security management and decision making in their organisation.
The survey equally found that just over 31% also reported they are very or extremely concerned their organisation will suffer a cyber- attack in the next year and a third (34%) say their organisation doesn’t have a cyber crisis management plan in place in the event of a breach. This lack of preparedness is especially striking in the light of the 12th May WannaCry ransom attack, which affected 150 countries in under 12 hours.
Key findings:

  • Companies are struggling to adopt a risk-based approach: Although companies are now less concerned with merely complying with standards and are focussed on actually reducing the risk of a cyber attack, almost half (45%) agreed that assessing and managing these risks is their biggest challenge.
  • Third-party breaches are a growing concern: Just over a third (35%) of respondents said a third party cyber breach had affected their organisation and despite nine in ten respondents (93%) taking steps to evaluate their third parties’ cyber security measures, 53% said this was confined to  contractual measures.
  • Cyber attacks have major long-term effects: 4 in 10 respondents said a cyber attack has resulted in the misuse of sensitive or confidential information (43%) and a loss of customer information (41%).

Toby Chinn, Partner and Head of Cyber Security at Control Risks commented:
“The misalignment between treating cyber security as a technological issue or a business risk is not new. Yet, the survey shows that this misalignment remains a considerable and on-going concern for many organisations.”
He continues:
“Our advice is to always start with the threat. The way in which cyber threats are assessed and communicated throughout the business is key. This assessment should include the specific cyber threats to the organisation, how they could impact the business and what controls might mitigate them. After assessing the risks and understanding them, the organisation can then deal with these within its overall risk management strategy.”
Organisations should ensure cyber security becomes a regular item on the board’s agenda that includes reviewing the external cyber threat landscape in conjunction with IT. Organisations also benefit from regular crisis management exercises that involve all relevant parties including the C-suite, IT, legal, communications and any other members of the crisis management team. These exercises ensure that all parties understand their roles and responsibilities and the potential implications of a cyber attack.

0 0 vote
Article Rating
FacebookTweetLinkedIn
Tags: BoardCybersecurityTechnologyThreat
ShareTweetShare
Previous Post

The Journey to Security Automation

Next Post

Security Teams Overwhelmed by Rising Volume of Attacks

Subscribe
Notify of
guest
guest
0 Comments
Inline Feedbacks
View all comments

Recent News

AT&T Cybersecurity Launches New Managed Endpoint Security Solution with SentinelOne

AT&T Cybersecurity Launches New Managed Endpoint Security Solution with SentinelOne

April 19, 2021
Dominos pizza

Domino’s India suffers data breach

April 19, 2021
whatsapp icon

Vulnerabilities found in older version of WhatsApp

April 19, 2021
Data Breach Cyber attack code

University of Hertfordshire suffers system outage due to cyberattack 

April 15, 2021

The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY

Follow Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Events
    • Women in Cyber 2020
    • Women in Cyber 2020 [SPONSORS]
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

This site uses functional cookies and external scripts to improve your experience.

More information
wpDiscuz
0
0
Would love your thoughts, please comment.x
()
x
| Reply
Privacy Settings / PENDINGGDPR Compliance

Privacy Settings / PENDING

This site uses functional cookies and external scripts to improve your experience. Which cookies and scripts are used and how they impact your visit is specified on the left. You may change your settings at any time. Your choices will not impact your visit.

NOTE: These settings will only apply to the browser and device you are currently using.

GDPR Compliance

Accept