Upload
fidelis-cybersecurity
View
312
Download
5
Embed Size (px)
Citation preview
THE TRUST
GAP
THE VISIBILITY
GAP
TAKE AWAY
Board members are very aware cybersecurity is an issue, but lack visibility into breach and cyber activity.
59%BOD
18%ITSec
WHEN IT COMES TO CYBERSECURITYWE’RE DOING A GOOD JOB!
54%
23%
18%
High value breaches reported by IT security professionals.
Breaches reported by board members.
Board members unsure if any breaches had occured.
60%IT security professionals
believe that theBoard DOES NOT
understand the risks
70%Board membersbelieve they DO
understand the risks
MISMATCHED PERCEPTION BREEDS MISTRUST.
79% OF BOARD MEMBERS RATE THEIR OWN EFFECTIVENESS OF CYBERSECURITY GOVERNANCE AT A 7/10 OR BETTER
46% OF IT SECURITY PROFESSIONALS RATETHE BOARD’S EFFECTIVENESS OF CYBERSECURITY GOVERNANCE AT A 4.5/10
TAKE AWAY
These issues lead to a breakdown of trust and communciation between board members and their own IT security professionals.
TARGET’S BREACHWAS A
WAKE-UP
CALL
BOTH GROUPS AGREE THAT THE TARGET BREACH HAD A SIGNIFICANT IMPACT ON THE BOARD’S
INVOLVEMENT IN CYBERSECURITY GOVERNANCE.
AGREE
65% 67%
How Fidelis Cybersecuritycan help your organization:
Mitigate Your Risk Now.
SOLUTIONS TO BRIDGE
THE GAP
ADD CYBERSECURITY ADVISOR TO BOARD
EDUCATE THE BOARD
INCREASE TRANSPARENCY AND COMMUNICATION BETWEEN THE BOARD AND
IT SECURITY PROFESSIONALS
PROACTIVEDEFENSE
SERVICES
ADVANCEDTHREAT
DEFENSE
INCIDENT RESPONSE FORENSIC SERVICES
fidelissecurity.com
SOURCE: CYBERSECURITY GOVERNANCE AND THE BOARD OF DIRECTORS, CONDUCTED BY PONEMON INSTITUTE, OCT 2014. SAMPLE SIZE: MORE THAN 650 BOARD MEMBERS AND IT SECURITY PROFESSIONALS (MAINLY CIOS, CTOS AND CISOS).
CORPORATEGOVERNANCE
DAY-TO-DAYPROTECTION
LACKSNECESSARYEXPERTISE
LACKS CONFIDENCEIN BOARD’S
UNDERSTANDING
RESPONSIBILITY
THE GAP
MEET THE PLAYERS
(BOD) (ITSec)BOARD OF DIRECTORS IT SECURITY PROFESSIONALS
BOARD OF DIRECTOR’S
KNOWLEDGE
GAP41%ADMITTED THEY LACKEDEXPERTISE IN CYBERSECURITY
26%SAID THEY HAD MINIMAL OR NOKNOWLEDGE OF CYBERSECURITY
TAKE AWAY
Lack of knowledge makes it difficult, if not impossible, for board members to understand and address cybersecurity risks.
SAME TEAM
BOD ITSec
DOWNLOAD OUR WHITEPAPER
To learn more about bridging the gap in your organization:
Follow our cybersecurity discussion on Twitter.
#ExposeTheGap
CYBERSECURITY101
EXPOSINGTHE GAP
BETWEEN BOARDS & CISOs
VISIBILITYUNDERSTANDING THEKNOWLEDGE,
& TRUST GAPS
THE TRUST
GAP
THE VISIBILITY
GAP
TAKE AWAY
Board members are very aware cybersecurity is an issue, but lack visibility into breach and cyber activity.
59%BOD
18%ITSec
WHEN IT COMES TO CYBERSECURITYWE’RE DOING A GOOD JOB!
54%
23%
18%
High value breaches reported by IT security professionals.
Breaches reported by board members.
Board members unsure if any breaches had occured.
60%IT security professionals
believe that theBoard DOES NOT
understand the risks
70%Board membersbelieve they DO
understand the risks
79% OF BOARD MEMBERS RATE THEIR OWN EFFECTIVENESS OF CYBERSECURITY GOVERNANCE AT A 7/10 OR BETTER
46% OF IT SECURITY PROFESSIONALS RATETHE BOARD’S EFFECTIVENESS OF CYBERSECURITY GOVERNANCE AT A 4.5/10
TAKE AWAY
These issues lead to a breakdown of trust and communciation between board members and their own IT security professionals.
TARGET’S BREACHWAS A
WAKE-UP
CALL
BOTH GROUPS AGREE THAT THE TARGET BREACH HAD A SIGNIFICANT IMPACT ON THE BOARD’S
INVOLVEMENT IN CYBERSECURITY GOVERNANCE.
AGREE
65% 67%
How Fidelis Cybersecuritycan help your organization:
Mitigate Your Risk Now.
SOLUTIONS TO BRIDGE
THE GAP
ADD CYBERSECURITY ADVISOR TO BOARD
EDUCATE THE BOARD
INCREASE TRANSPARENCY AND COMMUNICATION BETWEEN THE BOARD AND
IT SECURITY PROFESSIONALS
PROACTIVEDEFENSE
SERVICES
ADVANCEDTHREAT
DEFENSE
INCIDENT RESPONSE FORENSIC SERVICES
fidelissecurity.com
SOURCE: CYBERSECURITY GOVERNANCE AND THE BOARD OF DIRECTORS, CONDUCTED BY PONEMON INSTITUTE, OCT 2014. SAMPLE SIZE: MORE THAN 650 BOARD MEMBERS AND IT SECURITY PROFESSIONALS (MAINLY CIOS, CTOS AND CISOS).
CORPORATEGOVERNANCE
DAY-TO-DAYPROTECTION
LACKSNECESSARYEXPERTISE
LACKS CONFIDENCEIN BOARD’S
UNDERSTANDING
RESPONSIBILITY
THE GAP
MEET THE PLAYERS
(BOD) (ITSec)BOARD OF DIRECTORS IT SECURITY PROFESSIONALS
BOARD OF DIRECTOR’S
KNOWLEDGE
GAP41%ADMITTED THEY LACKEDEXPERTISE IN CYBERSECURITY
26%SAID THEY HAD MINIMAL OR NOKNOWLEDGE OF CYBERSECURITY
TAKE AWAY
Lack of knowledge makes it difficult, if not impossible, for board members to understand and address cybersecurity risks.
SAME TEAM
BOD ITSec
DOWNLOAD OUR WHITEPAPER
To learn more about bridging the gap in your organization:
Follow our cybersecurity discussion on Twitter.
#ExposeTheGap
CYBERSECURITY101
EXPOSINGTHE GAP
BETWEEN BOARDS & CISOs
VISIBILITYUNDERSTANDING THEKNOWLEDGE,
& TRUST GAPS
MISMATCHED PERCEPTION BREEDS MISTRUST.