Benchmarking Survey Reveals Boards Taking Steps to Improve Oversight of Cyber Risk But Gaps Remain

Continuity Insights

RANE (Risk Assistance Network + Exchange) and the Nasdaq Center for Board Excellence have released results of a survey of publicly listed companies and nonprofits that show boards and executive team members give themselves high marks for cybersecurity awareness but that additional training on cyber risks would be beneficial.

Cybersecurity has become the leading concern for businesses worldwide. The types of cyber risks that are the most important to boards/executive team members include:

  • Ransomware attacks are the number one concern of the respondents.
  • Cyber breaches resulting in stolen data are also of extreme concern, as are social engineering/phishing/business email compromise and cyber breaches resulting in destruction or manipulation of data.
  • The area of least concern was a cyber incident caused by an insider threat.

“One major finding of this survey is that boards often focus on ransomware or other highly publicized attacks without realizing the connection between the attacks and the intersection with geopolitical events,” says RANE CEO Steve Roycroft. “RANE is pleased to partner with Nasdaq to provide critical information so boards can effectively benchmark their cybersecurity efforts.”

Almost all respondents express confidence that their board/executive team is prepared to respond to a cyber incident, however, some notable differences include:

  • Only 59% of respondents say that cybersecurity training was provided to the board, and of those remaining, 69% indicated that they would like to receive training.
  • A quarter of respondents say their board does not have a methodology for quantifying cybersecurity risk.
  • The majority of respondents say their organizations carry cyber liability insurance, but only 9% say their policy ensures full resilience against any business interruptions.

For full details of the RANE and Nasdaq survey on cybersecurity and proactive next steps on which boards should focus visit.

Continuity Insights

Similar Articles

4 Major Cybersecurity Risks That Any Business Should Look Out For

By Ashley Halsey: Business continuity is essential for businesses, yet this important factor is usually taken for granted. However, the worst-case scenario is NOT having business continuity, which can be … Read more

Workplace bullying as an organizational problem

Though workplace bullying is conceptualized as an organizational problem, there remains a gap in understanding the contexts in which bullying manifests—knowledge vital for addressing bullying in practice. In three studies, … Read more

Apple may bring ‘Continuity’ features to its upcoming AR headset

Tech giant Apple is planning to bring “Continuity” features to its upcoming augmented reality (AR)– mixed reality (MR) headset. The tech giant has filed a patent application titled “Multi-Device Continuity for use … Read more

Leave a Comment

Share to...