ISACA Cyber Security Survey

The Dutch chapter of ISACA recently presented its new report ‘Governance of Cyber Security 2014’, which investigates how far cyber security governance is given appropriate attention in large companies and institutions. A large survey was performed in which participants were asked to rank how important 17 different issues are for their organisation.

As an independent, non-profit, global association, ISACA engages in the development, adoption and use of globally accepted, industry-leading knowledge and practices for information systems. ISACA has more than 110,000 members worldwide. Through more than 200 chapters established in more than 80 countries, ISACA provides its members with education, resource sharing, advocacy, professional networking, and a host of other benefits on a local level.

The authors conclude that the following issues are seen as most important by the organisations included in the survey: management commitment, incident response, risk management and culture. However, almost all participants were concerned about the lack of attention for cyber security governance within their organisation. Financial institutions perform relative well compared to the Health and Energy sectors. Another conclusion is that organisations are often dealing with issues concerning third-party management, as third-parties are often not acknowledged as important stakeholders for cyber security. Additionally, they experience difficulties with assessing and reviewing suppliers regarding compliance.

Click here for the full report.