Nasdaq Report Addresses Cybersecurity and Building a Culture of Responsibility

Tanium commissioned a survey with the Nasdaq to study the accountibility of CEOs and CIOs for cyber security. Business and government leaders grapple daily with innovation’s double-edged sword: as new technologies introduce unprecedented levels of efficiency, speed, and capability to the world, a new wave of cybersecurity risks immediately follow, threatening that very technology and the people who use it. In many instances, the technology organizations use to protect themselves has dramatically failed to keep pace with the speed and agility of modern threats, creating billions of dollars of damage from data breaches annually. But this is only half the story. Less visible is the widespread lack of personal and organizational accountability for the protection of a company’s most sensitive data. This accountability gap shows up as dissonance between corporate leaders’ current awareness and readiness for cybersecurity challenges and where they need to be. In “The Accountability Gap: Cybersecurity & Building a Culture of Responsibility,” they worked with a global panel of cybersecurity subject-matter experts to define the seven inherent challenges that make up cybersecurity vulnerability: Cyber Literacy, Risk Appetite, Threat Intelligence, Legislation & Regulation, Network Resilience, Response, and Behavior. The research team at Goldsmiths, University of London developed a statistical model for scoring readiness, awareness and  vulnerability for these challenges and assessed through a survey of 1,530 non-executive directors (NED), C-level executives,Chief Information Officers (CIO), and Chief Information Security Officers (CISO) across the United States, United Kingdom, Germany, Japan, and Denmark, Norway, Sweden, and Finland (Nordics). The intention of the study was to identify and understand where the gaps exist across all organizational levels around cybersecurity vulnerability from a people, process, and technology perspective. How can business and government organizations their leaders instill a culture of cyber security? Share your recommendations with the Cloud and Cyber Security Center:  http://cloudandcybersecurity.blogspot.com/