While board of directors may understand the importance of cybersecurity, many lack crucial knowledge and visibility into issues and risks, which breeds a lack of trust between the board and IT security professionals. On this site, you’ll find a variety of resources to help bridge those gaps and bring the two groups together so organizations can better defend against advanced threats.
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Bridging the Cybersecurity Gap
1. THE TRUST
GAP
THE VISIBILITY
GAP
TAKE AWAY
Board members are very aware cybersecurity is an issue, but lack
visibility into breach and cyber activity.
59%
BOD
18%
ITSec
WHEN IT COMES TO CYBERSECURITY
WE’RE DOING A GOOD JOB!
54%
23%
18%
High value breaches
reported by IT security
professionals.
Breaches reported by
board members.
Board members unsure if
any breaches had occured.
60%IT security professionals
believe that the
Board DOES NOT
understand the risks
70%Board members
believe they DO
understand the risks
MISMATCHED PERCEPTION
BREEDS MISTRUST.
79%
OF BOARD MEMBERS RATE THEIR OWN
EFFECTIVENESS OF CYBERSECURITY
GOVERNANCE AT A 7/10 OR BETTER
46%
OF IT SECURITY PROFESSIONALS RATE
THE BOARD’S EFFECTIVENESS OF
CYBERSECURITY GOVERNANCE AT A 4.5/10
TAKE AWAY
These issues lead to a breakdown of trust and communciation
between board members and their own IT security professionals.
TARGET’S BREACH
WAS A
WAKE-UP
CALL
BOTH GROUPS AGREE THAT THE TARGET BREACH
HAD A SIGNIFICANT IMPACT ON THE BOARD’S
INVOLVEMENT IN CYBERSECURITY GOVERNANCE.
AGREE
65% 67%
How Fidelis Cybersecurity
can help your organization:
Mitigate Your Risk Now.
SOLUTIONS TO BRIDGE
THE GAP
ADD CYBERSECURITY ADVISOR TO BOARD
EDUCATE THE BOARD
INCREASE TRANSPARENCY AND
COMMUNICATION BETWEEN THE BOARD AND
IT SECURITY PROFESSIONALS
PROACTIVE
DEFENSE
SERVICES
ADVANCED
THREAT
DEFENSE
INCIDENT
RESPONSE
FORENSIC
SERVICES
fidelissecurity.com
SOURCE: CYBERSECURITY GOVERNANCE AND THE BOARD OF DIRECTORS,
CONDUCTED BY PONEMON INSTITUTE, OCT 2014. SAMPLE SIZE: MORE THAN 650
BOARD MEMBERS AND IT SECURITY PROFESSIONALS (MAINLY CIOS, CTOS AND CISOS).
CORPORATE
GOVERNANCE
DAY-TO-DAY
PROTECTION
LACKS
NECESSARY
EXPERTISE
LACKS CONFIDENCE
IN BOARD’S
UNDERSTANDING
RESPONSIBILITY
THE GAP
MEET THE PLAYERS
(BOD) (ITSec)
BOARD OF DIRECTORS IT SECURITY PROFESSIONALS
BOARD OF DIRECTOR’S
KNOWLEDGE
GAP
41%ADMITTED THEY LACKED
EXPERTISE IN CYBERSECURITY
26%SAID THEY HAD MINIMAL OR NO
KNOWLEDGE OF CYBERSECURITY
TAKE AWAY
Lack of knowledge makes it difficult, if not impossible, for board
members to understand and address cybersecurity risks.
SAME TEAM
BOD ITSec
DOWNLOAD OUR WHITEPAPER
To learn more about bridging the gap in your organization:
Follow our cybersecurity discussion on Twitter.
#ExposeTheGap
CYBER
SECURITY101
EXPOSING
THE GAP
BETWEEN BOARDS & CISOs
VISIBILITY
UNDERSTANDING THE
KNOWLEDGE,
& TRUST GAPS
2. THE TRUST
GAP
THE VISIBILITY
GAP
TAKE AWAY
Board members are very aware cybersecurity is an issue, but lack
visibility into breach and cyber activity.
59%
BOD
18%
ITSec
WHEN IT COMES TO CYBERSECURITY
WE’RE DOING A GOOD JOB!
54%
23%
18%
High value breaches
reported by IT security
professionals.
Breaches reported by
board members.
Board members unsure if
any breaches had occured.
60%IT security professionals
believe that the
Board DOES NOT
understand the risks
70%Board members
believe they DO
understand the risks
79%
OF BOARD MEMBERS RATE THEIR OWN
EFFECTIVENESS OF CYBERSECURITY
GOVERNANCE AT A 7/10 OR BETTER
46%
OF IT SECURITY PROFESSIONALS RATE
THE BOARD’S EFFECTIVENESS OF
CYBERSECURITY GOVERNANCE AT A 4.5/10
TAKE AWAY
These issues lead to a breakdown of trust and communciation
between board members and their own IT security professionals.
TARGET’S BREACH
WAS A
WAKE-UP
CALL
BOTH GROUPS AGREE THAT THE TARGET BREACH
HAD A SIGNIFICANT IMPACT ON THE BOARD’S
INVOLVEMENT IN CYBERSECURITY GOVERNANCE.
AGREE
65% 67%
How Fidelis Cybersecurity
can help your organization:
Mitigate Your Risk Now.
SOLUTIONS TO BRIDGE
THE GAP
ADD CYBERSECURITY ADVISOR TO BOARD
EDUCATE THE BOARD
INCREASE TRANSPARENCY AND
COMMUNICATION BETWEEN THE BOARD AND
IT SECURITY PROFESSIONALS
PROACTIVE
DEFENSE
SERVICES
ADVANCED
THREAT
DEFENSE
INCIDENT
RESPONSE
FORENSIC
SERVICES
fidelissecurity.com
SOURCE: CYBERSECURITY GOVERNANCE AND THE BOARD OF DIRECTORS,
CONDUCTED BY PONEMON INSTITUTE, OCT 2014. SAMPLE SIZE: MORE THAN 650
BOARD MEMBERS AND IT SECURITY PROFESSIONALS (MAINLY CIOS, CTOS AND CISOS).
CORPORATE
GOVERNANCE
DAY-TO-DAY
PROTECTION
LACKS
NECESSARY
EXPERTISE
LACKS CONFIDENCE
IN BOARD’S
UNDERSTANDING
RESPONSIBILITY
THE GAP
MEET THE PLAYERS
(BOD) (ITSec)
BOARD OF DIRECTORS IT SECURITY PROFESSIONALS
BOARD OF DIRECTOR’S
KNOWLEDGE
GAP
41%ADMITTED THEY LACKED
EXPERTISE IN CYBERSECURITY
26%SAID THEY HAD MINIMAL OR NO
KNOWLEDGE OF CYBERSECURITY
TAKE AWAY
Lack of knowledge makes it difficult, if not impossible, for board
members to understand and address cybersecurity risks.
SAME TEAM
BOD ITSec
DOWNLOAD OUR WHITEPAPER
To learn more about bridging the gap in your organization:
Follow our cybersecurity discussion on Twitter.
#ExposeTheGap
CYBER
SECURITY101
EXPOSING
THE GAP
BETWEEN BOARDS & CISOs
VISIBILITY
UNDERSTANDING THE
KNOWLEDGE,
& TRUST GAPS
MISMATCHED PERCEPTION
BREEDS MISTRUST.