The Global Information Security Survey (GISS) from the auditors EY provides insights from 1755 participants and looks at cybersecurity.
The digital world abounds with rapidly expanding opportunities for innovation, and businesses, governments and individuals have turned their attention to the significant benefits. By creating new markets and new products, a better understanding of consumers and citizens and finding different ways of connecting with them, the digital world offers enormous potential. Unfortunately, in the rush, many precautions have been overlooked and risks underestimated.
For organisations to recognise the current challenges and to understand what they need to do to improve, they need to think fully about how digital attacks unfold, says the audit firm EY.
For its information security survey, visit – http://www.ey.com/.
To move to a safer and more sustainable place in the digital world it is necessary to apply a cyber-risk lens to everything you do.
The view for managing risk will look different for the board and the C-suite than employees, just as it will appear different again for partners, suppliers, vendors and other third parties. The problem is managing how not to drown in all this data, and create more work and risks than it is worth. Instead, you should prioritise, streamline and map out what a comprehensive and efficient cybersecurity approach means for your particular organisation.
To efficiently guide your organisation through the layers of risks and threats, leaders must have the confidence to set the risk appetite, and be prepared to swing into decisive action to handle any incidents. For example, one clear theme emerging from the last couple of years is that the impact of an incident is greatly reduced by the leadership ensuring there is intelligent and appropriate handling of cyber incidents, and effective communication both internally and externally to manage the outcome.
Only when the risk appetite is set at a level the Board is comfortable with, and that the organisation can achieve, will your digital transformations be sustainable, the audit firm adds.
Cyber incidents will not be a one-off, no matter how complex or simple, targeted or random they may be, or appear to be. The early subtle signs and the cumulative impact of repeated attacks must be understood and factored in.
