Paradise Papers Revelations - CSO50 Conference...of enterprise organizations have ... Financial...
Transcript of Paradise Papers Revelations - CSO50 Conference...of enterprise organizations have ... Financial...
Paradise Papers Revelations
Getting Back to Basics…the Shortfalls
44% 48% 54%DO NOT have an overall information security strategy
DO NOT have an employee security awareness program
DO NOT have an incident response process
Evaluating Business Partners through the Lens of the Cybersecurity
58%of enterprise organizations have
Service-Level Agreements with their business partners to specify
minimum cybersecurity standards compared to 36% of SMBs
47%of enterprise organizations evaluate the cybersecurity of supply chain/business
partners prior to conducting business
with them
31%say this has
resulted in termination
of contractsor relationships
What Prevents You From Focusing on Strategic Issues?
6%
13%
13%
15%
17%
19%
20%
20%
21%
27%
28%
28%
31%
Security around corporate travel/executive protection
Vendor issues
Cyber threats from inside the organization/Insider threats
Managing security/addressing risks around mobiledevices, BYOD
Gaining cooperation/buy-in from business leaders/stakeholders
Security around technology as a service/cloud computing
Ensuring customer privacy/confidentiality
Addressing security risks in disruptive technologies (e.g., cloud, mobile)prior to their implementation
Employee retention/hiring enough skilled workers
Employee awareness and cooperation issues
Meeting governance & compliance regulations
Budgetary constraints/demonstrating ROI
Cyber threats from outside the organization/APTs, DDoS Enterprise 26%SMB 37%
Government/NP 39%
Financial Services 40%
Healthcare 32%
Enterprise 24%SMB 31%
Security Executive 24%IT Executive 18%
Security is the CEO’s Priority for the CIO2017 2016 2015 2014
Total 646 571 558 722
Help reach specific goal for corporate revenue growth 32% 32% 40% 42%
Upgrade IT and data security to avoid cyber attack 32% 29% 23% 18%
Simplify IT 31% 23% 24% 22%
Lead a product innovation effort 28% 22% 21% 28%
Reduce IT spending 22% 15% 16% 13%
Enable new plan for customer acquisition & retention 21% 19% 22% 30%
Enable global expansion 19% 11% 13% 19%
Collaborate with the CMO or Chief Digital Officer on major customer initiative 17% 13% 18% 13%
Lead merger integration or due diligence on a potential acquisition 15% 12% 13% 12%
Strengthen business skills of IT staff 15% 16% 18%
Fill technical skill gaps of IT staff 9%
Partner with Chief Data Officer to identify new business or cost-saving opportunities 7%
UP FROM #8 PRIORITY IN 2014
Our Advice for Businesses
• C-suites must lead the charge – and Boards must be engaged
• Pursue resilience as a path to rewards – not merely to avoid risk
• Purposefully collaborate and leverage lessons-learned
• Stress-test interdependencies in your digital business ecosystem
• Focus more on risks involving data manipulation and destruction