40% Of Business Lose Out Due To Poor Cyber Security

New analysis reveals that nearly two in five companies have lost business due to lack of cyber security expertise. The September 2019 study conducted by Forrester shows that cyber security performance is vital to achieve commercial success and a higher focus on security can make all the difference to business.

Based on a survey of 207 security decision-makers with responsibility for risk, compliance, and/or communications with boards of directors, the study reviews how organisational error and technological complexities can inhibit businesses from accomplishing realistic security performance management.

Business leaders understand that security is a key differentiator for securing growth, with nearly three quarters of C-level respondents saying that improved security performance measurement would significantly improve company financial performance. Demands for cyber security reporting has intensified according to the study, with 79% of security decision-makers surveyed saying they had witnessed an increase. However, decision-makers say customers and partners receive some of the least accurate reporting of any security stakeholder, and 82% say that customer and partner perception of security is increasingly important, impacting the way their firm makes decisions.

The study also reports that cyber security risk ratings emerge as an early security metric bright spot with 45% of respondents using cyber security ratings, making it the third-most common metric overall.

The study reveals that commercial success is threatened due to errors in efficiently measuring security performance and communicating this to external stakeholders. Key weaknesses in measuring standards are revealed, highlighting that metrics are critical to improving communication around security performance. The study reveals companies that have formal security performance metrics in place are nearly two times more likely to develop security policies, update security technology and perform security trainings, than those that do not.

One out of five technically sound employees end up quitting their job if they find that the policies of the firm don’t comply with privacy norms, costing the firm £30,000 every time a skilled professional leaves the company, according to the study.

“Financial success, brand perception, business continuity and company reputation now all hinge on security performance,” said Tom Turner, CEO od security ratings firm, BitSight, which commissioned the report.

“But in order to effectively manage performance, you have to measure it. We think this study should serve as a call for security leaders and their executives and boards to take a close look at their strategies for security performance measurement and reporting, after all, their businesses are now on the line.”

Contiuity Insurance & Risk Magazine         Forrester Consulting

You Might Also Read: 

Employee Training Is Vital For Commercial Cybersecurity:

 

 

« AI Security Tool Thinks Much Faster Than Humans
More Girls Are Applying For Cyber Security Training »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

BSI Group

BSI Group

BSI is the business standards company that equips businesses with the necessary solutions to turn standards of best practice into habits of excellence

Auth0

Auth0

Auth0 is a cloud service that provides a set of unified APIs and tools that instantly enables single sign-on and user management for any application, API or IoT device.

Cellopoint

Cellopoint

Cellopoint is a leading manufacturer of information security and email lifecycle management (ELM) products.

Cyberspace Solarium Commission (CSC)

Cyberspace Solarium Commission (CSC)

The Cyberspace Solarium Commission was established to develop a consensus on a strategic approach to defending the United States in cyberspace against cyber attacks of significant consequences.

Scythe

Scythe

SCYTHE is a next generation red team platform for continuous and realistic enterprise risk assessments.

Appgate

Appgate

Appgate is the secure access company. We empower how people work and connect by providing solutions purpose-built on Zero Trust security principles.

Cyber Lockout

Cyber Lockout

Comprehensive ransomware insurance and preventative cybersecurity technology solution, working together to help protect businesses 24/7/365.

Raman Power Technologies

Raman Power Technologies

Raman Power Technologies focus on bringing value and solving business challenges through the delivery of modern IT services and solutions including cybersecurity.

Trenton Systems

Trenton Systems

Trenton Systems are committed to providing high-performance computing solutions to customers running mission-critical applications in harsh settings worldwide and across various industries.

Oxeye

Oxeye

Oxeye fills the gap between cloud and code to show exploitable vulnerabilities, and their path from API to code. More visibility. Less noise. More time to build.

DigitalPlatforms

DigitalPlatforms

DigitalPlatforms SpA is an Italian group with the mission of providing end-to-end solutions and Internet of Things and Cyber technologies to companies that manage critical infrastructures.

Vigilant Ops

Vigilant Ops

Vigilant Ops is a leader in Software Bill of Materials (SBOM) Automation. A proactive approach to cybersecurity with continuous vulnerability monitoring.

S2W

S2W

S2W is a data intelligence company specialized in cyber threat intelligence, brand/digital abuse, and blockchain.

Seal Security

Seal Security

Seal Security revolutionizes software supply chain security operations, empowering organizations to automate and scale their open source vulnerability remediation and patch management.

Emantra

Emantra

Emantra specialises in the enablement of Secure Cloud services through it’s comprehensive Sovereign Cloud Hosting, Secure Access Service Edge, and managed services.

Sword Group

Sword Group

Sword is a leader in data insights, digital transformation and technology services with a substantial reputation in complex IT, business projects and mission critical operations.