The 2018 Travelers Risk Index has found cyber risks are the No. 2 concern across all business sizes and industries, and the percentage of businesses reporting they have been the victim of a cyber-attack has doubled. It also found that 52 percent of respondents believe that suffering a cyber-attack is inevitable.
Tim Erlin, Vice President of Product Management and Strategy at Tripwire:
“The conflict between high confidence and missing foundational controls demonstrates that most organizations simply aren’t sure what ‘best practices’ for cybersecurity really are. There are a number of reasonable starting points for best practices, including the CIS controls and NIST cybersecurity framework, but there’s relatively little focus placed on measuring how an organization is doing with these basics. It’s far easier to purchase the latest artificial intelligence cybersecurity tool than it is to assess your implementation of foundational controls.
Until business leaders are capable of asking more directed questions about cybersecurity controls, we’re likely to see this contraction persist.”