By Matt Graff, Client Director, Cyber Security, BTGS.
As IA14 approaches, the government’s flagship event for cyber security and information assurance, we’re revisiting BT’s recent global cyber security research, paying particular attention to the views of government. It’s based on five hundred interviews with IT decision-makers in organisations across seven countries, and assesses attitudes to cyber security, emerging threats and their level of preparation.
The research found that the majority of IT decision makers still believe that CEOs and board members underestimate the significance of cyber security within their organisation, resulting in funding. This must be closed by CEOs and board members; it’s crucial that they have effective cyber security services and educate people about threats throughout their organisation.
In response to emerging threats, over three quarters (87 per cent) of government sector IT decision makers globally say they would like to overhaul their IT infrastructure and design it with security features, whereas, 74 per cent in the finance sector and 61 per cent in the pharmaceutical sector think the same. HMG Strategy attendees at IA14 will be wrestling with serious challenges; they need to implement effective security within legacy, complex or outsourced environments. It is critical to be able to maximise existing capabilities and information as a baseline for effective security.
Only 48 per cent of those surveyed can measure the ROI of their cyber security versus 80 per cent of pharmaceutical organisations. In the commercial sector, effective cyber investment tends to be business case or business benefit led. Measuring ROI is critical in terms of providing predictable and well managed investment and this is a deficiency that absolutely must be addressed in government.
So where does government perceive the biggest threats? Over half (68 per cent) of public sector IT decision makers see non-malicious insider threats (such as accidental loss of data) as most severe. This is closely followed by: hacktivism at 65 per cent; malicious insider threats (such as intentional leaks) at 62 per cent; organised crime at 51 per cent; nation states at 41 per cent and terrorism at 40 per cent.
Whilst a survey is only a snapshot of opinion, it still re-enforces the need for effective cyber security strategies that are driven and supported at board level. 2014 is not the year to become complacent; our future success, and sustainable, long term growth depends on the strategies and decisions we make today.
If you are responsible for the delivery of IA, cyber security in government or the critical national infrastructure, join us at IA14 to engage in the debate with senior colleagues across government and academia.
Register here for your place at IA14 and visit us on stand seven or join our day two collaboration workshop.