On a scale of 1-5, how would you rate your organization’s ability to successfully protect your organization's operational network (OT) and IT network from a cyber attack?

Security & GRC Crisis Management

1. We are not at all prepared.7%

2. We are somewhat prepared.45%

3. We are moderately prepared.22%

4. We are generally prepared.17%

5. We are highly prepared.7%

319 PARTICIPANTS

2k views3 Upvotes2 Comments

Chief Information Officer in Manufacturing, 10,001+ employees

As prepared we are today, we need to make sure we are also prepared for what's come tomorrow. We want to have all the tools available for Zero-Day Attacks but that's where our remediation plan comes in.

VP, Director of Cyber Incident Response in Finance (non-banking), 10,001+ employees

While we might consider ourselves highly prepared, we don't for a minute think that we're immune.

Content you might like

Is there a disconnect between security leaders and the businesses they serve?

Security & GRC Board Engagement Internal CXO Relationships

Yes, most security leaders.25%

Yes, some security leaders.61%

No10%

Not sure2%

360 PARTICIPANTS

1k views1 Comment

Would anyone be willing to share best practices about how their organization deals with ensuring Cookie Compliance, specifically to GDPR rules? Where should this sort of compliance review sit in an organization? The particular issue we have is who should review new web deployments that use cookies and to make the decisions on whether Cookies are Strictly Necessary or Functionality Cookies. For example is a Cookie required for a Live Chat to work Functionality or Strictly Necessary? Our Security team does not consider taking on these compliance reviews as their domain, as Cookie Compliance is not an internal security matter and the Data Protection team has a limited interest as the GDPR rules around Cookies apply in case of any Cookie being used by a website, whether or not it contains personal data.

Security & GRC Regulatory Compliance

Head of Cyber Security in Manufacturing, 501 - 1,000 employees

I would say, DPO and Security team both shall be involved and work hand in hand.

Most of the time the legals and or DPO don't have the technical acumen to understand when data is floating to third party services.

Lets ...read more

280 views1 Comment

What strategies are you currently using to minimize ransomware risks at your organization?

Security & GRC Threat & Vulnerability Management Data Protection & Encryption

We've adopted a zero trust security approach.34%

Network segmentation / Air gapping networks52%

Implementing a cybersecurity framework like MITRE ATT&CK or NIST38%

Creating reliable and accessible backups43%

All of the Above19%

Other (please share below!)0%

555 PARTICIPANTS

2.2k views1 Upvote

If you had a magic wand - what's the #1 daily business challenge you'd eliminate?

People & Leadership Strategy & Architecture Cloud +57 more

CTO in Software, 201 - 500 employees

Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.

142 19 Replies

Scare someone in IT using 5 words.

Crisis Management

Executive Architect in Healthcare and Biotech, 10,001+ employees

All the backups are corrupted.

5 1 Reply