The indictment sent a stern warning to security leaders, suggesting that they could be held criminally or civilly liable for cyberattacks that take place on their watch. It also highlighted a fundamental challenge for the CISO role: that while CISOs are responsible for raising risks to their senior leadership teams and board of directors, they rarely have the final say in how those risks should be managed or remediated. Additionally, the indictment raised broader questions about CISOs’ confidence levels in their organizations’ cyber risk management and governance practices.
We had this context—a cyber climate where scrutiny from the SEC in the U.S. is increasing and regulations around the globe are calling for more accountability—in mind when we conducted the survey for our third annual Global Cyber Confidence Index. In previous years, we asked security and IT decision-makers about their overall confidence in their organization’s cybersecurity postures. This year, we asked specifically about their confidence in their organization’s ability to effectively manage cyber risk. We also asked them about their organizations’ cyber risk management practices, cybersecurity budgets, experiences with ransomware, planned investments in security technology, and more. Read on for highlights from the report.
Download 2024 Global Cyber Confidence Index Whitepaper