governance of cybersecurity report

63 % 46 % Boards acvely addressing and governing computer and informaon security CEO or board CFO CIO CISO 40 % 52 % 8 % Said their board regularly or occasionally reviewed annual security program Said they had parcipated in a test scenario of the plan CISO role sll segregated in their reporng and they are kept out of boardroom level visibility North America + 50 % Europe + 26 % Asia + 3 % Industrial + 37 % Financial + 35 % Energy + 33 % IT Cybersecurity + 33 % Increase in Boards’ Focus by Industry Increase in Boards’ Aenon to Cyber Insurance The Needle Has Moved The Year of Executive Accountability Who the CiSO Reports To Boards reviewing security budgets The Diﬀerence Between Talk and Acon 2012 : 33 % 2015 : 63 % 50 % 41 % 23 % 2010 2012 2015 Risk Management *Jody R. Westby, Governance of Cybersecurity: 2015 Report, Georgia Tech Informaon Security Center, Oct. 2, 2015 Download the full report at: www.paloaltonetworks.com/resources/techbriefs/governance-of-cybersecurity.html Boards’ Focus on Computer and Informaon Security Boards review risk assessment reports 93 % Boards hire outside experts to assist on risk issues 53 % North America Europe Asia 85 % 58 % 38 %

Upload: paloaltonetworks

Post on 14-Apr-2017

5.107 views

Category:

Internet

0 download

Report

Download

Embed Size (px):

TRANSCRIPT

Page 1: Governance of Cybersecurity Report

63%

46%

Boards actively addressing and governing computer and information security

CEOor boardCFOCIO

CISO

40% 52%8% Said their board regularly or occasionally reviewed annual security program

Said they had participated in a test scenario of the plan

CISO role still segregated in their reporting and they are kept out of boardroom level visibility

North America

+50%Europe

+26%Asia

+3%

Industrial

+37%Financial

+35%Energy

+33%IT Cybersecurity

+33%

Increase in Boards’ Focus by Industry

Increase in Boards’ Attention to Cyber Insurance

The Needle Has Moved

The Year ofExecutive Accountability

Who the CiSO Reports To Boards reviewing security budgets

The Difference Between Talk and Action

2012 : 33% 2015 : 63%

50%

41%

23%

2010

2012

2015

Risk Management

*Jody R. Westby, Governance of Cybersecurity: 2015 Report, Georgia Tech Information Security Center, Oct. 2, 2015Download the full report at: www.paloaltonetworks.com/resources/techbriefs/governance-of-cybersecurity.html

Boards’ Focus on Computer andInformation Security

Boards review risk assessment reports

93%Boards hire outside experts to assist on risk issues

53%North America Europe Asia

85% 58% 38%

Data Driven Cybersecurity Governance

NATIONAL CYBERSECURITY STRATEGY III · National Cybersecurity Strategy III (NCSS III) 10 Definition of Cybersecurity 10 1. Cybersecurity governance 11 1.1. Main state bodies involved

Cybersecurity Governance Update: New FFIEC …fmsmdchapter.org/images/downloads/2015_Presentation_Materials/fms...Cybersecurity Governance Update: New FFIEC Requirements ... •E‐Banking

Report on Cybersecurity Practices - FINRA.org Report on...2 REPORT ON CYBERSECURITY PRACTICES—FEBRUARY 2015 00 Technical controls, a central component in a firm’s cybersecurity

2021 Midyear Cybersecurity Report

Cybersecurity Governance Guidelines

EY Cybersecurity Report