Information Risk Management Still Needs Improvement

Posted on Mar 22, 2018

Cybersecurity threats and attacks across various business sectors are on the rise and with that comes pressure for organizations to continuously assess the risks to any information. Understanding the context of high level guidance and technical details are necessary to assess risk appropriately.

But what are the technical details and operational steps needed to meet the high level guidance on cybersecurity risk? A recent Advisen survey revealed some interesting statistics:

  • 35% of respondents rated data integrity risks as “high risk” versus only 22% that of rated business continuity risks, or cyber related business interruption
  • Only 60% of the risk professionals surveyed said their executive management team viewed cyber risk as a significant threat to the organization, down 23% from the previous year.
  • Only 53% knew of any updates or changes even after the 2017 high profile attack

In short, these statistics paint a grim picture: While organizations are aware of the high risk of cyber attacks, management team involvement may be decreasing, and organizations may not be evolving their cybersecurity programs quickly enough. SecurityScorecard’s continuous monitoring tool can help alleviate bandwidth problems and help facilitate a cybersecurity program more in line with the sophisticated cyberthreat landscape.


References

  1. https://blog.rapid7.com/2017/0...
  2. https://www.advisenltd.com/2017/10/25/2017-information-security-cyber-risk-management-survey/

Security Research in your Inbox

Thanks for siging up for the newsletter!

No waiting, 100% Free

Get your personalized scorecard today

Get your free scorecard and learn how you stack up across 10 risk categories. Answer a few simple questions and we'll instantly send your score to your business email.

Get Your Free Score

Get In Touch

Thank you for contacting us!

Request a Demo

Thank you for requesting a demo!