iia canada webinar poll results benchmark your internal ......
Post on 31-May-2020
Embed Size (px)
IIA CANADA WEBINAR POLL RESULTS
Benchmark your Internal Audit Cyber Approach
NIST Cyber Security Framework
Top 20 Critical Security Controls
SOC2 Trust Service Principles
Industry Specific (NERC)
More than 340 participants polled by MNP and IIA Canada responded to questions about how their business was managing cyber security risks. The results showed a heightened awareness of cyber security but that more work needs to be done.
Which security control frameworks do you work with in your business?1
The results show that of those polled, the COBIT framework was the most popular security framework being used by organizations, but as noted, MNP professionals were having increasing success in working with Top 20 Critical Security Controls.
How often do you perform a cyber audit?2
The results show most organizations were performing cyber audits on an annual basis. However, MNP advocates a risk- based approach to determine the frequency and scope of cyber risk assurance activities.
On a continual basis 12%
4% Semi annual
Every two years
Greater than two years
We don’t / never
How well does your organization’s culture positively influence its cyber resiliency?3
Of those polled, results indicate an organization’s culture moderately influenced cyber resiliency. We note that for many boards and regulators, creating a culture of risk management has become an area of emphasis.
Not at all Minimally Moderately Extensively I don’t know No answer
3% 13% 43% 15% 10% 16%