What area(s) do you think your organization should improve to strengthen its cybersecurity posture?

ArchitectureStrategy

Building an effective incident response plan27%

Educating and training employees on cybersecurity57%

Enforcing password and access management53%

Protecting endpoint devices40%

Integrating security solutions20%

Embracing the cloud7%

274 PARTICIPANTS
2.9k viewscircle icon2 Upvotescircle icon1 Comment
Sort by:
Head of IT and Security in Finance (non-banking)4 years ago

We focus so much on technologies that we forget that most attacks come from social engineering

Lightbulb on2

Content you might like

How long does your organization retain original systems logs used to filter SOX-related actions into a system that requires review of the logs and retains the filtered logs for seven years? Does your organization consider those original system logs records subject to record retention requirements, or supporting information used to create the SOX records?

90 Days13%

365 Days37%

3 years33%

5 years7%

7 years10%

Other (share in the comments)

View Results

Our IT department is refreshing our SLAs and KPIs for Incident Management.  I would like to know who is a recognized authority on industry averages for IT Service Management processes for the service desk?  Below are examples of what I am looking for an industry average on. P1 95% resolved within 4 elapsed hours P2 90% resolved within 8 service hours P3 85% resolved within 3-5 days P4 85% resolved within 28 days

Do you believe that (RPA, Automation, and intelligent Automation), coupled with clear guidelines, robust process mapping, and effective monitoring and control capabilities, can serve as a key enabler for successfully integrating AI and GenAI into an organization's operations and strategies?

Strongly Agree29%

Agree62%

Disagree11%

Strongly Disagree1%

View Results

How can security leaders in smaller organizations stay informed about emerging threats if they don’t have access to formal threat intelligence feeds?

Read More Comments

To what extent are organisations actually realizing measurable value from AI-enabled capabilities in GRC platforms, and to what degree is embedded AI now viewed as a core, expected feature in GRC tool selection rather than a nice-to-have add-on?