{"id":2342,"date":"2018-10-17T19:48:04","date_gmt":"2018-10-17T19:48:04","guid":{"rendered":"http:\/\/madhousereport.com\/?p=2342"},"modified":"2018-10-17T19:48:04","modified_gmt":"2018-10-17T19:48:04","slug":"9-10-enterprises-report-gaps-cybersecurity-culture-one-want","status":"publish","type":"post","link":"https:\/\/theblogonline.com\/?p=2342","title":{"rendered":"9 in 10 Enterprises Report Gaps Between Cybersecurity Culture They Have And The One They Want"},"content":{"rendered":"

New research from ISACA and the CMMI Institute finds that few employees understand their role in protecting information<\/i> <\/span><\/p>\n

LAS VEGAS–(BUSINESS WIRE<\/span><\/a><\/span>\/AETOSWire<\/span><\/a><\/span>)– With cybersecurity threats continuing to escalate worldwide, the ISACA\/CMMI Institute Cybersecurity Culture Report<\/span><\/a> found that just 5 percent of employees think their organization\u2019s cybersecurity culture is as advanced as it needs to be to protect their business from internal and external threats. More than 4,800 business and technology professionals shared their insights in the global research study, conducted via online polling in June 2018. Results were released today at ISACA\u2019s CSX North America cybersecurity conference in Las Vegas. <\/span><\/p>\n

Cybersecurity culture is a workplace culture in which security awareness and behaviors are integrated into everyone\u2019s daily operations, as well as an executive leadership priority. In a threat-ripe environment, an effective cybersecurity culture can help employees understand their roles and responsibilities in keeping their organizations safe and customer data secure. However, just 34 percent of respondents say they understand their role in their organizations\u2019 cyber culture. <\/span><\/p>\n

Companies must take an all-hands-on-deck approach to counter cyberattack threats, the report summarizes. <\/span><\/p>\n

\u201cEnlisting the entire workforce to mitigate an enterprise\u2019s cyber risk is an emerging practice,\u201d says Doug Grindstaff II, SVP of Cybersecurity Solutions at CMMI Institute<\/span><\/a>. \u201cWe are hearing a lot of feedback about how organizations can move the needle on employee involvement. It\u2019s challenging, but organizations are rightly concerned by the growing sophistication of cyberattacks.\u201d <\/span><\/p>\n

Widespread employee involvement correlates strongly with the minority of organizations that have achieved strong satisfaction with their cybersecurity culture. Nine in ten employees (92 percent) at these organizations say that their C-level executives share an excellent understanding of the underlying issues, which may be why they loop-in their employees so well; 84 percent of employees at these organizations say they understand their role in cybersecurity. <\/span><\/p>\n

Other critical findings include: <\/span><\/p>\n

Many organizations lack the first\u2014and all-important\u2014step toward a cybersecurity culture:<\/b> 42 percent of organizations do not have an outlined cybersecurity culture management plan or policy. <\/span><\/p>\n

Aligning the entire workforce with the organization\u2019s cybersecurity policies requires significant capital:<\/b> Organizations that report a significant gap between their current and desired cybersecurity culture are spending just 19 percent of their annual cybersecurity budget on training and tools; organizations that believe their cybersecurity culture is where it is supposed to be are spending more than twice as much (43 percent). <\/span><\/p>\n

\u201cA key motivator for organizations delaying investing in their cybersecurity cultures is a lack of awareness about the attempted threats and ongoing risks, as well as a lack of awareness about the assets at risk to cybersecurity threats,\u201d said Rob Clyde, NACD Board Leadership Fellow and ISACA Board Chair. \u201cHowever, individuals tend to underestimate the potential damage and overestimate technology\u2019s ability to limit such incidents. Doing so puts their organizations at serious risk.\u201d <\/span><\/p>\n

To view the research, visit www.isaca.org\/cybersecurity-culture-study<\/span><\/a>. <\/span><\/p>\n

About ISACA<\/b> <\/span><\/p>\n

Nearing its 50th year, ISACA<\/b><\/span>\u00ae<\/sup><\/b><\/span> (isaca.org<\/span><\/a>) is a global association helping individuals and enterprises achieve the positive potential of technology. ISACA equips professionals with the knowledge, credentials, education and community to advance their careers and transform their organizations. <\/span><\/p>\n

Twitter:<\/b> www.twitter.com\/ISACANews<\/span><\/a> <\/span><\/p>\n

About CMMI<\/b><\/span>\u00ae<\/sup><\/b><\/span> Institute<\/b> <\/span><\/p>\n

A subsidiary of ISACA Enterprises, CMMI Institute (cmmiinstitute.com<\/span><\/a>) is the global leader in the advancement of best practices in people, process and technology. The Institute provides the tools and support for organizations to benchmark their capabilities and maturity by comparing their operations to best practices and identifying performance gaps. <\/span><\/p>\n

Twitter: <\/b>https:\/\/twitter.com\/CMMI_Institute<\/span><\/a> <\/span><\/p>\n

View source version on businesswire.com: https:\/\/www.businesswire.com\/news\/home\/20181015005149\/en\/<\/span><\/a><\/span><\/p>\n

*Source: AETOSWire<\/span><\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"

New research from ISACA and the CMMI Institute finds that few employees understand their role in protecting information LAS VEGAS–(BUSINESS WIRE\/AETOSWire)– With cybersecurity threats continuing to escalate worldwide, the ISACA\/CMMI Institute Cybersecurity Culture Report found that just 5 percent of employees think their organization\u2019s cybersecurity culture is as advanced as it needs to be to […]<\/p>\n","protected":false},"author":1,"featured_media":2343,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[1726,1725],"class_list":["post-2342","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-metro","tag-cybersecurity-culture","tag-enterprises-report"],"_links":{"self":[{"href":"https:\/\/theblogonline.com\/index.php?rest_route=\/wp\/v2\/posts\/2342"}],"collection":[{"href":"https:\/\/theblogonline.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/theblogonline.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/theblogonline.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/theblogonline.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2342"}],"version-history":[{"count":1,"href":"https:\/\/theblogonline.com\/index.php?rest_route=\/wp\/v2\/posts\/2342\/revisions"}],"predecessor-version":[{"id":2344,"href":"https:\/\/theblogonline.com\/index.php?rest_route=\/wp\/v2\/posts\/2342\/revisions\/2344"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/theblogonline.com\/index.php?rest_route=\/wp\/v2\/media\/2343"}],"wp:attachment":[{"href":"https:\/\/theblogonline.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2342"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/theblogonline.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2342"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/theblogonline.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2342"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}