paradise papers revelations - cso50 conference...of enterprise organizations have ... financial...
TRANSCRIPT
![Page 1: Paradise Papers Revelations - CSO50 Conference...of enterprise organizations have ... Financial Services 40% Healthcare 32% Enterprise 24% SMB 31% Security Executive 24% IT Executive](https://reader034.vdocument.in/reader034/viewer/2022051916/6008919c018ecb74a514cbb7/html5/thumbnails/1.jpg)
Paradise Papers Revelations
![Page 2: Paradise Papers Revelations - CSO50 Conference...of enterprise organizations have ... Financial Services 40% Healthcare 32% Enterprise 24% SMB 31% Security Executive 24% IT Executive](https://reader034.vdocument.in/reader034/viewer/2022051916/6008919c018ecb74a514cbb7/html5/thumbnails/2.jpg)
Getting Back to Basics…the Shortfalls
44% 48% 54%DO NOT have an overall information security strategy
DO NOT have an employee security awareness program
DO NOT have an incident response process
![Page 3: Paradise Papers Revelations - CSO50 Conference...of enterprise organizations have ... Financial Services 40% Healthcare 32% Enterprise 24% SMB 31% Security Executive 24% IT Executive](https://reader034.vdocument.in/reader034/viewer/2022051916/6008919c018ecb74a514cbb7/html5/thumbnails/3.jpg)
Evaluating Business Partners through the Lens of the Cybersecurity
58%of enterprise organizations have
Service-Level Agreements with their business partners to specify
minimum cybersecurity standards compared to 36% of SMBs
47%of enterprise organizations evaluate the cybersecurity of supply chain/business
partners prior to conducting business
with them
31%say this has
resulted in termination
of contractsor relationships
![Page 4: Paradise Papers Revelations - CSO50 Conference...of enterprise organizations have ... Financial Services 40% Healthcare 32% Enterprise 24% SMB 31% Security Executive 24% IT Executive](https://reader034.vdocument.in/reader034/viewer/2022051916/6008919c018ecb74a514cbb7/html5/thumbnails/4.jpg)
What Prevents You From Focusing on Strategic Issues?
6%
13%
13%
15%
17%
19%
20%
20%
21%
27%
28%
28%
31%
Security around corporate travel/executive protection
Vendor issues
Cyber threats from inside the organization/Insider threats
Managing security/addressing risks around mobiledevices, BYOD
Gaining cooperation/buy-in from business leaders/stakeholders
Security around technology as a service/cloud computing
Ensuring customer privacy/confidentiality
Addressing security risks in disruptive technologies (e.g., cloud, mobile)prior to their implementation
Employee retention/hiring enough skilled workers
Employee awareness and cooperation issues
Meeting governance & compliance regulations
Budgetary constraints/demonstrating ROI
Cyber threats from outside the organization/APTs, DDoS Enterprise 26%SMB 37%
Government/NP 39%
Financial Services 40%
Healthcare 32%
Enterprise 24%SMB 31%
Security Executive 24%IT Executive 18%
![Page 5: Paradise Papers Revelations - CSO50 Conference...of enterprise organizations have ... Financial Services 40% Healthcare 32% Enterprise 24% SMB 31% Security Executive 24% IT Executive](https://reader034.vdocument.in/reader034/viewer/2022051916/6008919c018ecb74a514cbb7/html5/thumbnails/5.jpg)
Security is the CEO’s Priority for the CIO2017 2016 2015 2014
Total 646 571 558 722
Help reach specific goal for corporate revenue growth 32% 32% 40% 42%
Upgrade IT and data security to avoid cyber attack 32% 29% 23% 18%
Simplify IT 31% 23% 24% 22%
Lead a product innovation effort 28% 22% 21% 28%
Reduce IT spending 22% 15% 16% 13%
Enable new plan for customer acquisition & retention 21% 19% 22% 30%
Enable global expansion 19% 11% 13% 19%
Collaborate with the CMO or Chief Digital Officer on major customer initiative 17% 13% 18% 13%
Lead merger integration or due diligence on a potential acquisition 15% 12% 13% 12%
Strengthen business skills of IT staff 15% 16% 18%
Fill technical skill gaps of IT staff 9%
Partner with Chief Data Officer to identify new business or cost-saving opportunities 7%
UP FROM #8 PRIORITY IN 2014
![Page 6: Paradise Papers Revelations - CSO50 Conference...of enterprise organizations have ... Financial Services 40% Healthcare 32% Enterprise 24% SMB 31% Security Executive 24% IT Executive](https://reader034.vdocument.in/reader034/viewer/2022051916/6008919c018ecb74a514cbb7/html5/thumbnails/6.jpg)
Our Advice for Businesses
• C-suites must lead the charge – and Boards must be engaged
• Pursue resilience as a path to rewards – not merely to avoid risk
• Purposefully collaborate and leverage lessons-learned
• Stress-test interdependencies in your digital business ecosystem
• Focus more on risks involving data manipulation and destruction