How would you describe the maturity of the risk management program at your organization currently?

Security & GRCThreat Intelligence & Incident Response

Early Stages - the security activities haven't been planned/deployed yet.17%

Middle stage - we've planned security activities, but we've only partially deployed them.58%

Late-middle stage - we've deployed the majority of our security activities and it's keeping up with threats.20%

Mature stage - all security activities are deployed and are proactively detecting threats.3%

591 PARTICIPANTS
3.4k viewscircle icon1 Upvote

Content you might like

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

Read More Comments

Are you seeing changes in the quality or speed of threat intelligence from sources you relied on in previous years? Can you share how you are being impacted so far by the uncertainty around public-private partnerships for cyber information sharing?

Read More Comments

What are the biggest cyber resilience challenges for your org right now? Pick all that apply to you.

Coordinating response efforts across departments29%

Managing third-party/supply chain risks62%

Adapting to rapidly evolving cyber threats56%

Securing executive buy-in/sufficient budget22%

Balancing user experience with security measures18%

Other (share yours below)

View Results

What are the best practices for securing the MFA registration phase when moving from SMS to phishing-resistant methods like passkeys (FIDO2) or TOTP-based authenticator apps? Specifically, how can we mitigate risks in device enrollment and key provisioning without phone numbers? What innovations are your organizations implementing or have implemented to bolster this process? - I don't see this as a competitive advantage but all of us good guys against the bad.

Do you stipulate security standards that your suppliers must adhere to as part of your contracts?

Yes80%

No16%

Unsure2%

View Results
How would you describe the maturity of the risk management program at your organization currently? | Gartner Peer Community