SlideShare a Scribd company logo

Make risk and cybersecurity a boardroom agenda

Tata Consultancy Services
Tata Consultancy Services

The TCS Risk & Cybersecurity study analyses the challenges CISOs & CROs face & the risk management strategies pacesetters adopt for better security.

Business
1 of 18
Download to read offline
Make risk and cybersecurity a boardroom agenda TCS Risk and Cybersecurity Study on.tcs.com/risk-cybersecurity TCS Thought Leadership Institute
2 The objective To learn how the C-suite officers in charge of corporate strategy for cyber risk and security in key industries are preparing for cyber threats and attacks. • How involved are boards of directors and other CXOs in ensuring cybersecurity? • How confident are CISOs and CROs of their cybersecurity capabilities in the face of advanced threats? • What are the priority areas for securing enterprises and improving cyber resiliency? • What are the obstacles to implementing cybersecurity initiatives? • Do companies trust the security of cloud platforms? TCS Risk and Cybersecurity Study
3 We identified two special categories within our 607 respondents. Learning from the leaders Pacesetters = Companies with higher revenue and net profit growth than the industry average (2017 to 2021) Pacesetters and Followers 49% 17% 34% 17% Pacesetters 34% all others 49% Followers Followers = Companies with lower revenue and net profit growth than the industry average (2017 to 2021) TCS Risk and Cybersecurity Study
4 Two out of every five boards of directors discuss cyber risk and security at every meeting… How often the board includes cyber risk and security in its agenda 1% 40% 43% 13% 4% 40% at every board meeting 43% periodically 13% occasionally or as necessary 4% almost never or never 1% don’t know/can’t say how often …but one in six boards engage on the issue never, occasionally, or only as necessary. TCS Risk and Cybersecurity Study
5 The more financially successful a company is, the more likely the board is to focus on cyber risk and security. How often the board includes cyber risk and security in its agenda 1% 44% 46% 5% 5% 42% 41% 14% 3% 36% 44% 14% 4% Very regularly/every board meeting Periodically Occasionally/as necessary Almost never or never Don’t know/can’t say Pacesetters All others Followers TCS Risk and Cybersecurity Study
6 Most CISOs and CROs feel at least somewhat confident they can avoid a major cybersecurity incident. CISO and CRO confidence in their company’s ability to avoid a major cyber incident in the next 3 years resulting in significant financial or reputational loss 14% 46% 31% 9% 0.33% Very confident Somewhat confident Neutral/not sure Increasingly less confident Not at all confident TCS Risk and Cybersecurity Study
7 While 4 in 10 C-suite executives could be said to be proactive on issues of risk and cybersecurity, over half tend to be reactive, at best. How much attention is given to cyber risks and security issues by business unit leaders and its C-level executives 42% 18% 33% 7% 42% of CISOs/CROs say other executives actively and frequently discuss cyber risks and security 33% of CISOs/CROs say other executives discuss cyber risks and security, but usually only when cyber threats are brought to their attention 18% of CISOs/CROs say other executives discuss cyber risks and security only when a cyberattack hurts business 7% of CISOs/CROs say other executives have hardly addressed cyber risk and security TCS Risk and Cybersecurity Study
8 Platforms and databases related to cash flow, customer data and intellectual property are the highest targets. The supply chain and, especially, the digital ecosystem enabling much of global business should get higher consideration, given the increasing number of attacks using these as a vector. 8 Finance Customer databases Rank 4 7 3 1 5 2 6 9 10 Corporate functions where CISOs and CROs expect to see the greatest number of cyberattacks between now and 2025 R&D Sales/ecommerce Marketing Manufacturing plants/production/procurement Human resources Legal Distribution/supply chain Ecosystem partners TCS Risk and Cybersecurity Study
9 Boards of directors are less likely to think ecosystem risks warrant closer focus–which may represent a blind spot. not included: “There have been no cyber risk or security priorities arising out of board discussions” (3%) Rank Cyber risk and security priorities arising out of board-level discussions TCS Risk and Cybersecurity Study 4 3 1 5 2 6 Increasing cybersecurity maturity of our company relative to industry peers and adopting emerging models like zero trust Ensuring cyber risks are holistically managed and mitigated across our company and its larger ecosystem Creating and adopting a comprehensive cybersecurity governance model Focusing on ecosystem risks and collaboration for oversight, monitoring, and mitigation of those risks Creating a “resilience-by-design” culture and adopting such standards and controls Improving visibility of cyber risks and ensuring compliance to regulatory and industry requirements
10 Cloud platforms have edged out on-premises servers and traditional data centers as the more secure option. Most companies find cloud platforms as or more secure compared to on-premises infrastructure 34% 28% 32% 6% 34% say cloud platforms are more secure than on-premises servers or data centers 28% say the cyber risks of cloud platforms and on-premises services or data centers are about the same 32% say cloud platforms are less secure than on-premises servers or data centers 6% of companies can’t come to an agreement about the cybersecurity risks of cloud platforms TCS Risk and Cybersecurity Study
11 Firms that are more financially successful are also more likely to opt for the security of cloud platforms over traditional infrastructures. Enterprise attitudes toward cloud platforms 44% 27% 25% 4% 38% 25% 31% 6% 27% 31% 36% 6% Pacesetters All others Followers TCS Risk and Cybersecurity Study Cloud platforms are more secure than on-premises servers or data centers The cyber risks of cloud platforms and on-premises services or data centers are about the same Cloud platforms are less secure than on-premises servers or data centers We can’t come to an agreement about the cybersecurity risks of cloud platforms
12 The cyber executives of cloud-friendly companies are more likely to feel confident about their security posture toward internal risks and external threats. Perceptions of external/internal risks and threats, versus enterprise attitudes toward cloud platforms n = 607; not shown: companies that can't come to an agreement about cybersecurity risk of cloud platforms We have external/internal risks and threats well in hand Our ability to handle external/internal risk and threats is typical for our industry External/internal risks and threats outstrip our defenses, policies and controls 41% 34% 25% 34% 38% 29% 29% 39% 32% Cloud platforms are more secure than on-premises servers or data centers The cyber risks of cloud platforms and on-premises services or data centers are about the same Cloud platforms are less secure than on-premises servers or data centers TCS Risk and Cybersecurity Study
13 Recruiting and retaining advanced cyber skills are the greatest challenges for CISOs and CROs 8 Rank 4 7 3 1 5 2 6 12 11 9 10 Skill sets to manage, engineer and support cybersecurity technology The greatest challenges to cybersecurity and risk mitigation initiatives according to CROs and CISOs Workforce changes/requirements (e.g., work from home, bring-your-own-device, etc.) Assessing cyber risks and quantifying relevant costs Reliance on legacy IT systems Accumulated complexity of our own business processes and operations Difficulty in demonstrating return on cybersecurity investments Lack of collaboration across enterprise units (business, IT and security) Lack of diversity (including of thought and experience) in staff assessing cyber risks and threats Difficulty in mandating that our current vendors adopt advanced technologies and policies Budget constraints Competing interests for the board or senior leadership Outdated, siloed and non-integrated security tools TCS Risk and Cybersecurity Study
14 Getting and keeping top talent is becoming more difficult for cybersecurity positions. Recruiting and retaining needed cyber skills We have not had a difficult time doing so this past year We have had a difficult time doing so this past year Recruiting top talent with cyber risk and security skills Retaining top talent with cyber risk and security skills 56% 44% 58% 42% TCS Risk and Cybersecurity Study
15 Cloud-friendly organizations have a five-point advantage in recruiting and retaining top talent compared to cloud-avoidant companies Embrace of cloud platforms, vs challenge in recruiting and retaining top talent with cyber skills combined "recruiting" and "retention" answers; not shown: "We can't come to an agreement on cloud" We have not had a difficult time recruiting/retaining top talent with cyber skills We have had a difficult time recruiting/retaining top talent with cyber skills Cloud platforms present less cyber risk than on-premises servers or traditional data centers 59% 59% 54% 41% 41% 46% The cyber risks of cloud platforms present no more or less risk than the cyber risks inherent in on-premises servers and traditional data centers Cloud platforms present more cyber risk than on-premises servers or traditional data centers TCS Risk and Cybersecurity Study
16 2 roles, 2 continents, 4 industries: 607 participants • Chief risk officers: 50% • Chief information security officers: 50% • North America HQ: 54% • Europe/UK HQ: 46% • Banking and financial services: 25% • Utilities: 25% • Media and information services: 25% • Manufacturing: 25% TCS Risk and Cybersecurity Study
17 TCS Risk and Cybersecurity Study To learn more about how chief risk and information security officers perceive the challenges they’re up against, visit on.tcs.com/risk-cybersecurity
18 Make risk and cybersecurity a boardroom agenda TCS Risk and Cybersecurity Study TCS Thought Leadership Institute TCS Risk and Cybersecurity Study

Recommended

trellix-mind-of-the-ciso-report-ebook-behind-the-breach.pdf
trellix-mind-of-the-ciso-report-ebook-behind-the-breach.pdftrellix-mind-of-the-ciso-report-ebook-behind-the-breach.pdf
trellix-mind-of-the-ciso-report-ebook-behind-the-breach.pdfw2sdvzdjtz
 
Perception Gaps in Cyber Resilience: What Are Your Blind Spots?
Perception Gaps in Cyber Resilience: What Are Your Blind Spots?Perception Gaps in Cyber Resilience: What Are Your Blind Spots?
Perception Gaps in Cyber Resilience: What Are Your Blind Spots?Sarah Nirschl
 
The Stand Against Cyber Criminals Lawyers, Take The Stand Against Cyber Crimi...
The Stand Against Cyber Criminals Lawyers, Take The Stand Against Cyber Crimi...The Stand Against Cyber Criminals Lawyers, Take The Stand Against Cyber Crimi...
The Stand Against Cyber Criminals Lawyers, Take The Stand Against Cyber Crimi...Symantec
 
How to Raise Cyber Risk Awareness and Management to the C-Suite
How to Raise Cyber Risk Awareness and Management to the C-SuiteHow to Raise Cyber Risk Awareness and Management to the C-Suite
How to Raise Cyber Risk Awareness and Management to the C-SuiteSurfWatch Labs
 
Security Priorities Sample Slides 2023.pdf
Security Priorities Sample Slides 2023.pdfSecurity Priorities Sample Slides 2023.pdf
Security Priorities Sample Slides 2023.pdfIDG
 
Cybersecurity Toolkit
Cybersecurity ToolkitCybersecurity Toolkit
Cybersecurity ToolkitClaranet UK
 
Cyber security: five leadership issues worthy of Board and executive attention
Cyber security: five leadership issues worthy of Board and executive attentionCyber security: five leadership issues worthy of Board and executive attention
Cyber security: five leadership issues worthy of Board and executive attentionRamón Gómez de Olea y Bustinza
 
Cyber security: Five leadership issues worthy of board and executive attention
Cyber security: Five leadership issues worthy of board and executive attentionCyber security: Five leadership issues worthy of board and executive attention
Cyber security: Five leadership issues worthy of board and executive attentionRamón Gómez de Olea y Bustinza
 

Recommended

trellix-mind-of-the-ciso-report-ebook-behind-the-breach.pdf
trellix-mind-of-the-ciso-report-ebook-behind-the-breach.pdftrellix-mind-of-the-ciso-report-ebook-behind-the-breach.pdf
trellix-mind-of-the-ciso-report-ebook-behind-the-breach.pdfw2sdvzdjtz
 
Perception Gaps in Cyber Resilience: What Are Your Blind Spots?
Perception Gaps in Cyber Resilience: What Are Your Blind Spots?Perception Gaps in Cyber Resilience: What Are Your Blind Spots?
Perception Gaps in Cyber Resilience: What Are Your Blind Spots?Sarah Nirschl
 
The Stand Against Cyber Criminals Lawyers, Take The Stand Against Cyber Crimi...
The Stand Against Cyber Criminals Lawyers, Take The Stand Against Cyber Crimi...The Stand Against Cyber Criminals Lawyers, Take The Stand Against Cyber Crimi...
The Stand Against Cyber Criminals Lawyers, Take The Stand Against Cyber Crimi...Symantec
 
How to Raise Cyber Risk Awareness and Management to the C-Suite
How to Raise Cyber Risk Awareness and Management to the C-SuiteHow to Raise Cyber Risk Awareness and Management to the C-Suite
How to Raise Cyber Risk Awareness and Management to the C-SuiteSurfWatch Labs
 
Security Priorities Sample Slides 2023.pdf
Security Priorities Sample Slides 2023.pdfSecurity Priorities Sample Slides 2023.pdf
Security Priorities Sample Slides 2023.pdfIDG
 
Cybersecurity Toolkit
Cybersecurity ToolkitCybersecurity Toolkit
Cybersecurity ToolkitClaranet UK
 
Cyber security: five leadership issues worthy of Board and executive attention
Cyber security: five leadership issues worthy of Board and executive attentionCyber security: five leadership issues worthy of Board and executive attention
Cyber security: five leadership issues worthy of Board and executive attentionRamón Gómez de Olea y Bustinza
 
Cyber security: Five leadership issues worthy of board and executive attention
Cyber security: Five leadership issues worthy of board and executive attentionCyber security: Five leadership issues worthy of board and executive attention
Cyber security: Five leadership issues worthy of board and executive attentionRamón Gómez de Olea y Bustinza
 
Network Security Risks and Challenges for Enterprises
Network Security Risks and Challenges for EnterprisesNetwork Security Risks and Challenges for Enterprises
Network Security Risks and Challenges for EnterprisesSandeep Yadav
 
10 Questions for the C-Suite in Assessing Cyber Risk
10 Questions for the C-Suite in Assessing Cyber Risk10 Questions for the C-Suite in Assessing Cyber Risk
10 Questions for the C-Suite in Assessing Cyber RiskMark Gibson
 
Evolving State of the Endpoint Webinar
Evolving State of the Endpoint WebinarEvolving State of the Endpoint Webinar
Evolving State of the Endpoint WebinarLumension
 
7350_RiskWatch-Summer2015-Maligec
7350_RiskWatch-Summer2015-Maligec7350_RiskWatch-Summer2015-Maligec
7350_RiskWatch-Summer2015-MaligecChristine Maligec, CRM-E, CRIS
 
Symantec Webinar Cloud Security Threat Report
Symantec Webinar Cloud Security Threat ReportSymantec Webinar Cloud Security Threat Report
Symantec Webinar Cloud Security Threat ReportSymantec
 
Azure Security.pdf
Azure Security.pdfAzure Security.pdf
Azure Security.pdfCloudthat Technologies Private
 
Azure security
Azure securityAzure security
Azure securityCloudthat Technologies Private
 
Responding to the Pandemic: Information Security and Technology Trends
Responding to the Pandemic: Information Security and Technology Trends Responding to the Pandemic: Information Security and Technology Trends
Responding to the Pandemic: Information Security and Technology Trends Enterprise Management Associates
 
How to Connect Your Server Room to the Board Room – Before a Data Breach Occurs
How to Connect Your Server Room to the Board Room – Before a Data Breach OccursHow to Connect Your Server Room to the Board Room – Before a Data Breach Occurs
How to Connect Your Server Room to the Board Room – Before a Data Breach OccursSurfWatch Labs
 
Cybersecurity: Perceptions & Practices
Cybersecurity: Perceptions & PracticesCybersecurity: Perceptions & Practices
Cybersecurity: Perceptions & PracticesJoseph DeFever
 
From checkboxes to frameworks
From checkboxes to frameworksFrom checkboxes to frameworks
From checkboxes to frameworksAndréanne Clarke
 
What CIOs Need To Tell Their Boards About Cyber Security
What CIOs Need To Tell Their Boards About Cyber SecurityWhat CIOs Need To Tell Their Boards About Cyber Security
What CIOs Need To Tell Their Boards About Cyber SecurityKaryl Scott
 
Harvey Nash UK & IRE Cyber Security Survey 2016
Harvey Nash UK & IRE Cyber Security Survey 2016Harvey Nash UK & IRE Cyber Security Survey 2016
Harvey Nash UK & IRE Cyber Security Survey 2016Bryan Smith
 
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...International Federation of Accountants
 
R if security_priorities_03.08.22
R if security_priorities_03.08.22R if security_priorities_03.08.22
R if security_priorities_03.08.22IDG
 
The Anatomy of a Cloud Security Breach
The Anatomy of a Cloud Security BreachThe Anatomy of a Cloud Security Breach
The Anatomy of a Cloud Security BreachCloudLock
 
Nube, Cumplimiento y Amenazas avanzadas: Consideraciones de Seguridad para la...
Nube, Cumplimiento y Amenazas avanzadas: Consideraciones de Seguridad para la...Nube, Cumplimiento y Amenazas avanzadas: Consideraciones de Seguridad para la...
Nube, Cumplimiento y Amenazas avanzadas: Consideraciones de Seguridad para la...Cristian Garcia G.
 
The State of Cyber Defense Report by Kroll - CY 2023
The State of Cyber Defense Report by Kroll - CY 2023The State of Cyber Defense Report by Kroll - CY 2023
The State of Cyber Defense Report by Kroll - CY 2023Ryan Frunnile
 
Integrating-Cyber-Security-for-Increased-Effectiveness
Integrating-Cyber-Security-for-Increased-EffectivenessIntegrating-Cyber-Security-for-Increased-Effectiveness
Integrating-Cyber-Security-for-Increased-EffectivenessAyham Kochaji
 
2015 - The Cloud for Managers @ Riga Business School - DSS - Cloud risks and ...
2015 - The Cloud for Managers @ Riga Business School - DSS - Cloud risks and ...2015 - The Cloud for Managers @ Riga Business School - DSS - Cloud risks and ...
2015 - The Cloud for Managers @ Riga Business School - DSS - Cloud risks and ...Andris Soroka
 
TCS Survey: The future of operations
TCS Survey: The future of operationsTCS Survey: The future of operations
TCS Survey: The future of operationsTata Consultancy Services
 
TCS Global Cloud Study – Key Findings
TCS Global Cloud Study – Key Findings TCS Global Cloud Study – Key Findings
TCS Global Cloud Study – Key Findings Tata Consultancy Services
 

More Related Content

Similar to Make risk and cybersecurity a boardroom agenda

Network Security Risks and Challenges for Enterprises
Network Security Risks and Challenges for EnterprisesNetwork Security Risks and Challenges for Enterprises
Network Security Risks and Challenges for EnterprisesSandeep Yadav
 
10 Questions for the C-Suite in Assessing Cyber Risk
10 Questions for the C-Suite in Assessing Cyber Risk10 Questions for the C-Suite in Assessing Cyber Risk
10 Questions for the C-Suite in Assessing Cyber RiskMark Gibson
 
Evolving State of the Endpoint Webinar
Evolving State of the Endpoint WebinarEvolving State of the Endpoint Webinar
Evolving State of the Endpoint WebinarLumension
 
Symantec Webinar Cloud Security Threat Report
Symantec Webinar Cloud Security Threat ReportSymantec Webinar Cloud Security Threat Report
Symantec Webinar Cloud Security Threat ReportSymantec
 
Responding to the Pandemic: Information Security and Technology Trends
Responding to the Pandemic: Information Security and Technology Trends Responding to the Pandemic: Information Security and Technology Trends
Responding to the Pandemic: Information Security and Technology Trends Enterprise Management Associates
 
How to Connect Your Server Room to the Board Room – Before a Data Breach Occurs
How to Connect Your Server Room to the Board Room – Before a Data Breach OccursHow to Connect Your Server Room to the Board Room – Before a Data Breach Occurs
How to Connect Your Server Room to the Board Room – Before a Data Breach OccursSurfWatch Labs
 
Cybersecurity: Perceptions & Practices
Cybersecurity: Perceptions & PracticesCybersecurity: Perceptions & Practices
Cybersecurity: Perceptions & PracticesJoseph DeFever
 
From checkboxes to frameworks
From checkboxes to frameworksFrom checkboxes to frameworks
From checkboxes to frameworksAndréanne Clarke
 
What CIOs Need To Tell Their Boards About Cyber Security
What CIOs Need To Tell Their Boards About Cyber SecurityWhat CIOs Need To Tell Their Boards About Cyber Security
What CIOs Need To Tell Their Boards About Cyber SecurityKaryl Scott
 
Harvey Nash UK & IRE Cyber Security Survey 2016
Harvey Nash UK & IRE Cyber Security Survey 2016Harvey Nash UK & IRE Cyber Security Survey 2016
Harvey Nash UK & IRE Cyber Security Survey 2016Bryan Smith
 
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...International Federation of Accountants
 
R if security_priorities_03.08.22
R if security_priorities_03.08.22R if security_priorities_03.08.22
R if security_priorities_03.08.22IDG
 
The Anatomy of a Cloud Security Breach
The Anatomy of a Cloud Security BreachThe Anatomy of a Cloud Security Breach
The Anatomy of a Cloud Security BreachCloudLock
 
Nube, Cumplimiento y Amenazas avanzadas: Consideraciones de Seguridad para la...
Nube, Cumplimiento y Amenazas avanzadas: Consideraciones de Seguridad para la...Nube, Cumplimiento y Amenazas avanzadas: Consideraciones de Seguridad para la...
Nube, Cumplimiento y Amenazas avanzadas: Consideraciones de Seguridad para la...Cristian Garcia G.
 
The State of Cyber Defense Report by Kroll - CY 2023
The State of Cyber Defense Report by Kroll - CY 2023The State of Cyber Defense Report by Kroll - CY 2023
The State of Cyber Defense Report by Kroll - CY 2023Ryan Frunnile
 
Integrating-Cyber-Security-for-Increased-Effectiveness
Integrating-Cyber-Security-for-Increased-EffectivenessIntegrating-Cyber-Security-for-Increased-Effectiveness
Integrating-Cyber-Security-for-Increased-EffectivenessAyham Kochaji
 
2015 - The Cloud for Managers @ Riga Business School - DSS - Cloud risks and ...
2015 - The Cloud for Managers @ Riga Business School - DSS - Cloud risks and ...2015 - The Cloud for Managers @ Riga Business School - DSS - Cloud risks and ...
2015 - The Cloud for Managers @ Riga Business School - DSS - Cloud risks and ...Andris Soroka
 

Similar to Make risk and cybersecurity a boardroom agenda (20)

Network Security Risks and Challenges for Enterprises
Network Security Risks and Challenges for EnterprisesNetwork Security Risks and Challenges for Enterprises
Network Security Risks and Challenges for Enterprises
 
10 Questions for the C-Suite in Assessing Cyber Risk
10 Questions for the C-Suite in Assessing Cyber Risk10 Questions for the C-Suite in Assessing Cyber Risk
10 Questions for the C-Suite in Assessing Cyber Risk
 
Evolving State of the Endpoint Webinar
Evolving State of the Endpoint WebinarEvolving State of the Endpoint Webinar
Evolving State of the Endpoint Webinar
 
7350_RiskWatch-Summer2015-Maligec
7350_RiskWatch-Summer2015-Maligec7350_RiskWatch-Summer2015-Maligec
7350_RiskWatch-Summer2015-Maligec
 
Symantec Webinar Cloud Security Threat Report
Symantec Webinar Cloud Security Threat ReportSymantec Webinar Cloud Security Threat Report
Symantec Webinar Cloud Security Threat Report
 
Azure Security.pdf
Azure Security.pdfAzure Security.pdf
Azure Security.pdf
 
Azure security
Azure securityAzure security
Azure security
 
Responding to the Pandemic: Information Security and Technology Trends
Responding to the Pandemic: Information Security and Technology Trends Responding to the Pandemic: Information Security and Technology Trends
Responding to the Pandemic: Information Security and Technology Trends
 
How to Connect Your Server Room to the Board Room – Before a Data Breach Occurs
How to Connect Your Server Room to the Board Room – Before a Data Breach OccursHow to Connect Your Server Room to the Board Room – Before a Data Breach Occurs
How to Connect Your Server Room to the Board Room – Before a Data Breach Occurs
 
Cybersecurity: Perceptions & Practices
Cybersecurity: Perceptions & PracticesCybersecurity: Perceptions & Practices
Cybersecurity: Perceptions & Practices
 
From checkboxes to frameworks
From checkboxes to frameworksFrom checkboxes to frameworks
From checkboxes to frameworks
 
What CIOs Need To Tell Their Boards About Cyber Security
What CIOs Need To Tell Their Boards About Cyber SecurityWhat CIOs Need To Tell Their Boards About Cyber Security
What CIOs Need To Tell Their Boards About Cyber Security
 
Harvey Nash UK & IRE Cyber Security Survey 2016
Harvey Nash UK & IRE Cyber Security Survey 2016Harvey Nash UK & IRE Cyber Security Survey 2016
Harvey Nash UK & IRE Cyber Security Survey 2016
 
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...
 
R if security_priorities_03.08.22
R if security_priorities_03.08.22R if security_priorities_03.08.22
R if security_priorities_03.08.22
 
The Anatomy of a Cloud Security Breach
The Anatomy of a Cloud Security BreachThe Anatomy of a Cloud Security Breach
The Anatomy of a Cloud Security Breach
 
Nube, Cumplimiento y Amenazas avanzadas: Consideraciones de Seguridad para la...
Nube, Cumplimiento y Amenazas avanzadas: Consideraciones de Seguridad para la...Nube, Cumplimiento y Amenazas avanzadas: Consideraciones de Seguridad para la...
Nube, Cumplimiento y Amenazas avanzadas: Consideraciones de Seguridad para la...
 
The State of Cyber Defense Report by Kroll - CY 2023
The State of Cyber Defense Report by Kroll - CY 2023The State of Cyber Defense Report by Kroll - CY 2023
The State of Cyber Defense Report by Kroll - CY 2023
 
Integrating-Cyber-Security-for-Increased-Effectiveness
Integrating-Cyber-Security-for-Increased-EffectivenessIntegrating-Cyber-Security-for-Increased-Effectiveness
Integrating-Cyber-Security-for-Increased-Effectiveness
 
2015 - The Cloud for Managers @ Riga Business School - DSS - Cloud risks and ...
2015 - The Cloud for Managers @ Riga Business School - DSS - Cloud risks and ...2015 - The Cloud for Managers @ Riga Business School - DSS - Cloud risks and ...
2015 - The Cloud for Managers @ Riga Business School - DSS - Cloud risks and ...
 

More from Tata Consultancy Services

TCS Global Cloud Study – Continental Europe
TCS Global Cloud Study – Continental EuropeTCS Global Cloud Study – Continental Europe
TCS Global Cloud Study – Continental EuropeTata Consultancy Services
 
TCS Global Cloud Study – United Kingdom & Ireland
TCS Global Cloud Study – United Kingdom & Ireland TCS Global Cloud Study – United Kingdom & Ireland
TCS Global Cloud Study – United Kingdom & Ireland Tata Consultancy Services
 
TCS Retail Consumer Survey: US Key Findings Report
TCS Retail Consumer Survey: US Key Findings ReportTCS Retail Consumer Survey: US Key Findings Report
TCS Retail Consumer Survey: US Key Findings ReportTata Consultancy Services
 
TCS Retail Consumer Survey: UK Key Findings Report
TCS Retail Consumer Survey: UK Key Findings ReportTCS Retail Consumer Survey: UK Key Findings Report
TCS Retail Consumer Survey: UK Key Findings ReportTata Consultancy Services
 
Outlook for the mid-2020s - TCS 2021 Global Leadership Study
Outlook for the mid-2020s - TCS 2021 Global Leadership StudyOutlook for the mid-2020s - TCS 2021 Global Leadership Study
Outlook for the mid-2020s - TCS 2021 Global Leadership StudyTata Consultancy Services
 
TCS 2021 Global Financial Leadership Study - The Next Era in Financial Planni...
TCS 2021 Global Financial Leadership Study - The Next Era in Financial Planni...TCS 2021 Global Financial Leadership Study - The Next Era in Financial Planni...
TCS 2021 Global Financial Leadership Study - The Next Era in Financial Planni...Tata Consultancy Services
 
TCS 2021 Global Leadership Study: Key Findings Report
TCS 2021 Global Leadership Study: Key Findings ReportTCS 2021 Global Leadership Study: Key Findings Report
TCS 2021 Global Leadership Study: Key Findings ReportTata Consultancy Services
 
Protecting Sensitive Personal Data in the Enterprise
Protecting Sensitive Personal Data in the EnterpriseProtecting Sensitive Personal Data in the Enterprise
Protecting Sensitive Personal Data in the EnterpriseTata Consultancy Services
 
Leadership in the digital era: new mandates, mindsets, and mind melts
Leadership in the digital era: new mandates, mindsets, and mind meltsLeadership in the digital era: new mandates, mindsets, and mind melts
Leadership in the digital era: new mandates, mindsets, and mind meltsTata Consultancy Services
 
The digital capabilities of the most resilient retailers
The digital capabilities of the most resilient retailersThe digital capabilities of the most resilient retailers
The digital capabilities of the most resilient retailersTata Consultancy Services
 
Mastering the Post-Pandemic Logistics Revolution
Mastering the Post-Pandemic Logistics RevolutionMastering the Post-Pandemic Logistics Revolution
Mastering the Post-Pandemic Logistics RevolutionTata Consultancy Services
 
How the CFO Can be an Effective Partner to the CEO in Navigating the Pandemic...
How the CFO Can be an Effective Partner to the CEO in Navigating the Pandemic...How the CFO Can be an Effective Partner to the CEO in Navigating the Pandemic...
How the CFO Can be an Effective Partner to the CEO in Navigating the Pandemic...Tata Consultancy Services
 
Today’s Digital Imperatives Demand C-Suite Reinvention
Today’s Digital Imperatives Demand C-Suite ReinventionToday’s Digital Imperatives Demand C-Suite Reinvention
Today’s Digital Imperatives Demand C-Suite ReinventionTata Consultancy Services
 
A new CMO role: leveraging an organization’s purpose for strategic advantage
A new CMO role: leveraging an organization’s purpose for strategic advantageA new CMO role: leveraging an organization’s purpose for strategic advantage
A new CMO role: leveraging an organization’s purpose for strategic advantageTata Consultancy Services
 
Digital Readiness and the Pandemic: Assessing the Impact
Digital Readiness and the Pandemic: Assessing the ImpactDigital Readiness and the Pandemic: Assessing the Impact
Digital Readiness and the Pandemic: Assessing the ImpactTata Consultancy Services
 
Reduce cost, improve coverage, and enhance effectiveness by using UAVs/Drones...
Reduce cost, improve coverage, and enhance effectiveness by using UAVs/Drones...Reduce cost, improve coverage, and enhance effectiveness by using UAVs/Drones...
Reduce cost, improve coverage, and enhance effectiveness by using UAVs/Drones...Tata Consultancy Services
 

More from Tata Consultancy Services (20)

TCS Survey: The future of operations
TCS Survey: The future of operationsTCS Survey: The future of operations
TCS Survey: The future of operations
 
TCS Global Cloud Study – Key Findings
TCS Global Cloud Study – Key Findings TCS Global Cloud Study – Key Findings
TCS Global Cloud Study – Key Findings
 
TCS Global Cloud Study – North America
TCS Global Cloud Study – North AmericaTCS Global Cloud Study – North America
TCS Global Cloud Study – North America
 
TCS Global Cloud Study – Continental Europe
TCS Global Cloud Study – Continental EuropeTCS Global Cloud Study – Continental Europe
TCS Global Cloud Study – Continental Europe
 
TCS Global Cloud Study – United Kingdom & Ireland
TCS Global Cloud Study – United Kingdom & Ireland TCS Global Cloud Study – United Kingdom & Ireland
TCS Global Cloud Study – United Kingdom & Ireland
 
TCS Global Cloud Study – Asia-Pacific
TCS Global Cloud Study – Asia-Pacific TCS Global Cloud Study – Asia-Pacific
TCS Global Cloud Study – Asia-Pacific
 
TCS Retail Consumer Survey: US Key Findings Report
TCS Retail Consumer Survey: US Key Findings ReportTCS Retail Consumer Survey: US Key Findings Report
TCS Retail Consumer Survey: US Key Findings Report
 
TCS Retail Consumer Survey: UK Key Findings Report
TCS Retail Consumer Survey: UK Key Findings ReportTCS Retail Consumer Survey: UK Key Findings Report
TCS Retail Consumer Survey: UK Key Findings Report
 
Outlook for the mid-2020s - TCS 2021 Global Leadership Study
Outlook for the mid-2020s - TCS 2021 Global Leadership StudyOutlook for the mid-2020s - TCS 2021 Global Leadership Study
Outlook for the mid-2020s - TCS 2021 Global Leadership Study
 
TCS 2021 Global Financial Leadership Study - The Next Era in Financial Planni...
TCS 2021 Global Financial Leadership Study - The Next Era in Financial Planni...TCS 2021 Global Financial Leadership Study - The Next Era in Financial Planni...
TCS 2021 Global Financial Leadership Study - The Next Era in Financial Planni...
 
TCS 2021 Global Leadership Study: Key Findings Report
TCS 2021 Global Leadership Study: Key Findings ReportTCS 2021 Global Leadership Study: Key Findings Report
TCS 2021 Global Leadership Study: Key Findings Report
 
Protecting Sensitive Personal Data in the Enterprise
Protecting Sensitive Personal Data in the EnterpriseProtecting Sensitive Personal Data in the Enterprise
Protecting Sensitive Personal Data in the Enterprise
 
Leadership in the digital era: new mandates, mindsets, and mind melts
Leadership in the digital era: new mandates, mindsets, and mind meltsLeadership in the digital era: new mandates, mindsets, and mind melts
Leadership in the digital era: new mandates, mindsets, and mind melts
 
The digital capabilities of the most resilient retailers
The digital capabilities of the most resilient retailersThe digital capabilities of the most resilient retailers
The digital capabilities of the most resilient retailers
 
Mastering the Post-Pandemic Logistics Revolution
Mastering the Post-Pandemic Logistics RevolutionMastering the Post-Pandemic Logistics Revolution
Mastering the Post-Pandemic Logistics Revolution
 
How the CFO Can be an Effective Partner to the CEO in Navigating the Pandemic...
How the CFO Can be an Effective Partner to the CEO in Navigating the Pandemic...How the CFO Can be an Effective Partner to the CEO in Navigating the Pandemic...
How the CFO Can be an Effective Partner to the CEO in Navigating the Pandemic...
 
Today’s Digital Imperatives Demand C-Suite Reinvention
Today’s Digital Imperatives Demand C-Suite ReinventionToday’s Digital Imperatives Demand C-Suite Reinvention
Today’s Digital Imperatives Demand C-Suite Reinvention
 
A new CMO role: leveraging an organization’s purpose for strategic advantage
A new CMO role: leveraging an organization’s purpose for strategic advantageA new CMO role: leveraging an organization’s purpose for strategic advantage
A new CMO role: leveraging an organization’s purpose for strategic advantage
 
Digital Readiness and the Pandemic: Assessing the Impact
Digital Readiness and the Pandemic: Assessing the ImpactDigital Readiness and the Pandemic: Assessing the Impact
Digital Readiness and the Pandemic: Assessing the Impact
 
Reduce cost, improve coverage, and enhance effectiveness by using UAVs/Drones...
Reduce cost, improve coverage, and enhance effectiveness by using UAVs/Drones...Reduce cost, improve coverage, and enhance effectiveness by using UAVs/Drones...
Reduce cost, improve coverage, and enhance effectiveness by using UAVs/Drones...
 

Recently uploaded

2024 Numerator Consumer Study of Cannabis Usage
2024 Numerator Consumer Study of Cannabis Usage2024 Numerator Consumer Study of Cannabis Usage
2024 Numerator Consumer Study of Cannabis UsageNeil Kimberley
 
/:Call Girls In Indirapuram Ghaziabad ➥9990211544 Independent Best Escorts In...
/:Call Girls In Indirapuram Ghaziabad ➥9990211544 Independent Best Escorts In.../:Call Girls In Indirapuram Ghaziabad ➥9990211544 Independent Best Escorts In...
/:Call Girls In Indirapuram Ghaziabad ➥9990211544 Independent Best Escorts In...lizamodels9
 
Youth Involvement in an Innovative Coconut Value Chain by Mwalimu Menza
Youth Involvement in an Innovative Coconut Value Chain by Mwalimu MenzaYouth Involvement in an Innovative Coconut Value Chain by Mwalimu Menza
Youth Involvement in an Innovative Coconut Value Chain by Mwalimu Menzaictsugar
 
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,noida100girls
 
Digital Transformation in the PLM domain - distrib.pdf
Digital Transformation in the PLM domain - distrib.pdfDigital Transformation in the PLM domain - distrib.pdf
Digital Transformation in the PLM domain - distrib.pdfJos Voskuil
 
8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCR8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCRashishs7044
 
Pitch Deck Teardown: NOQX's $200k Pre-seed deck
Pitch Deck Teardown: NOQX's $200k Pre-seed deckPitch Deck Teardown: NOQX's $200k Pre-seed deck
Pitch Deck Teardown: NOQX's $200k Pre-seed deckHajeJanKamps
 
8447779800, Low rate Call girls in Rohini Delhi NCR
8447779800, Low rate Call girls in Rohini Delhi NCR8447779800, Low rate Call girls in Rohini Delhi NCR
8447779800, Low rate Call girls in Rohini Delhi NCRashishs7044
 
Intro to BCG's Carbon Emissions Benchmark_vF.pdf
Intro to BCG's Carbon Emissions Benchmark_vF.pdfIntro to BCG's Carbon Emissions Benchmark_vF.pdf
Intro to BCG's Carbon Emissions Benchmark_vF.pdfpollardmorgan
 
FULL ENJOY Call girls in Paharganj Delhi | 8377087607
FULL ENJOY Call girls in Paharganj Delhi | 8377087607FULL ENJOY Call girls in Paharganj Delhi | 8377087607
FULL ENJOY Call girls in Paharganj Delhi | 8377087607dollysharma2066
 
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCRashishs7044
 
Lowrate Call Girls In Sector 18 Noida ❤️8860477959 Escorts 100% Genuine Servi...
Lowrate Call Girls In Sector 18 Noida ❤️8860477959 Escorts 100% Genuine Servi...Lowrate Call Girls In Sector 18 Noida ❤️8860477959 Escorts 100% Genuine Servi...
Lowrate Call Girls In Sector 18 Noida ❤️8860477959 Escorts 100% Genuine Servi...lizamodels9
 
Marketing Management Business Plan_My Sweet Creations
Marketing Management Business Plan_My Sweet CreationsMarketing Management Business Plan_My Sweet Creations
Marketing Management Business Plan_My Sweet Creationsnakalysalcedo61
 
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdfNewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdfKhaled Al Awadi
 
8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCR8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCRashishs7044
 
Lean: From Theory to Practice — One City’s (and Library’s) Lean Story… Abridged
Lean: From Theory to Practice — One City’s (and Library’s) Lean Story… AbridgedLean: From Theory to Practice — One City’s (and Library’s) Lean Story… Abridged
Lean: From Theory to Practice — One City’s (and Library’s) Lean Story… AbridgedKaiNexus
 
Annual General Meeting Presentation Slides
Annual General Meeting Presentation SlidesAnnual General Meeting Presentation Slides
Annual General Meeting Presentation SlidesKeppelCorporation
 
India Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample ReportIndia Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample ReportMintel Group
 
The CMO Survey - Highlights and Insights Report - Spring 2024
The CMO Survey - Highlights and Insights Report - Spring 2024The CMO Survey - Highlights and Insights Report - Spring 2024
The CMO Survey - Highlights and Insights Report - Spring 2024christinemoorman
 
Case study on tata clothing brand zudio in detail
Case study on tata clothing brand zudio in detailCase study on tata clothing brand zudio in detail
Case study on tata clothing brand zudio in detailAriel592675
 

Recently uploaded (20)

2024 Numerator Consumer Study of Cannabis Usage
2024 Numerator Consumer Study of Cannabis Usage2024 Numerator Consumer Study of Cannabis Usage
2024 Numerator Consumer Study of Cannabis Usage
 
/:Call Girls In Indirapuram Ghaziabad ➥9990211544 Independent Best Escorts In...
/:Call Girls In Indirapuram Ghaziabad ➥9990211544 Independent Best Escorts In.../:Call Girls In Indirapuram Ghaziabad ➥9990211544 Independent Best Escorts In...
/:Call Girls In Indirapuram Ghaziabad ➥9990211544 Independent Best Escorts In...
 
Youth Involvement in an Innovative Coconut Value Chain by Mwalimu Menza
Youth Involvement in an Innovative Coconut Value Chain by Mwalimu MenzaYouth Involvement in an Innovative Coconut Value Chain by Mwalimu Menza
Youth Involvement in an Innovative Coconut Value Chain by Mwalimu Menza
 
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
 
Digital Transformation in the PLM domain - distrib.pdf
Digital Transformation in the PLM domain - distrib.pdfDigital Transformation in the PLM domain - distrib.pdf
Digital Transformation in the PLM domain - distrib.pdf
 
8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCR8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCR
 
Pitch Deck Teardown: NOQX's $200k Pre-seed deck
Pitch Deck Teardown: NOQX's $200k Pre-seed deckPitch Deck Teardown: NOQX's $200k Pre-seed deck
Pitch Deck Teardown: NOQX's $200k Pre-seed deck
 
8447779800, Low rate Call girls in Rohini Delhi NCR
8447779800, Low rate Call girls in Rohini Delhi NCR8447779800, Low rate Call girls in Rohini Delhi NCR
8447779800, Low rate Call girls in Rohini Delhi NCR
 
Intro to BCG's Carbon Emissions Benchmark_vF.pdf
Intro to BCG's Carbon Emissions Benchmark_vF.pdfIntro to BCG's Carbon Emissions Benchmark_vF.pdf
Intro to BCG's Carbon Emissions Benchmark_vF.pdf
 
FULL ENJOY Call girls in Paharganj Delhi | 8377087607
FULL ENJOY Call girls in Paharganj Delhi | 8377087607FULL ENJOY Call girls in Paharganj Delhi | 8377087607
FULL ENJOY Call girls in Paharganj Delhi | 8377087607
 
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
 
Lowrate Call Girls In Sector 18 Noida ❤️8860477959 Escorts 100% Genuine Servi...
Lowrate Call Girls In Sector 18 Noida ❤️8860477959 Escorts 100% Genuine Servi...Lowrate Call Girls In Sector 18 Noida ❤️8860477959 Escorts 100% Genuine Servi...
Lowrate Call Girls In Sector 18 Noida ❤️8860477959 Escorts 100% Genuine Servi...
 
Marketing Management Business Plan_My Sweet Creations
Marketing Management Business Plan_My Sweet CreationsMarketing Management Business Plan_My Sweet Creations
Marketing Management Business Plan_My Sweet Creations
 
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdfNewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
 
8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCR8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCR
 
Lean: From Theory to Practice — One City’s (and Library’s) Lean Story… Abridged
Lean: From Theory to Practice — One City’s (and Library’s) Lean Story… AbridgedLean: From Theory to Practice — One City’s (and Library’s) Lean Story… Abridged
Lean: From Theory to Practice — One City’s (and Library’s) Lean Story… Abridged
 
Annual General Meeting Presentation Slides
Annual General Meeting Presentation SlidesAnnual General Meeting Presentation Slides
Annual General Meeting Presentation Slides
 
India Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample ReportIndia Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample Report
 
The CMO Survey - Highlights and Insights Report - Spring 2024
The CMO Survey - Highlights and Insights Report - Spring 2024The CMO Survey - Highlights and Insights Report - Spring 2024
The CMO Survey - Highlights and Insights Report - Spring 2024
 
Case study on tata clothing brand zudio in detail
Case study on tata clothing brand zudio in detailCase study on tata clothing brand zudio in detail
Case study on tata clothing brand zudio in detail
 

Make risk and cybersecurity a boardroom agenda

  • 1. Make risk and cybersecurity a boardroom agenda TCS Risk and Cybersecurity Study on.tcs.com/risk-cybersecurity TCS Thought Leadership Institute
  • 2. 2 The objective To learn how the C-suite officers in charge of corporate strategy for cyber risk and security in key industries are preparing for cyber threats and attacks. • How involved are boards of directors and other CXOs in ensuring cybersecurity? • How confident are CISOs and CROs of their cybersecurity capabilities in the face of advanced threats? • What are the priority areas for securing enterprises and improving cyber resiliency? • What are the obstacles to implementing cybersecurity initiatives? • Do companies trust the security of cloud platforms? TCS Risk and Cybersecurity Study
  • 3. 3 We identified two special categories within our 607 respondents. Learning from the leaders Pacesetters = Companies with higher revenue and net profit growth than the industry average (2017 to 2021) Pacesetters and Followers 49% 17% 34% 17% Pacesetters 34% all others 49% Followers Followers = Companies with lower revenue and net profit growth than the industry average (2017 to 2021) TCS Risk and Cybersecurity Study
  • 4. 4 Two out of every five boards of directors discuss cyber risk and security at every meeting… How often the board includes cyber risk and security in its agenda 1% 40% 43% 13% 4% 40% at every board meeting 43% periodically 13% occasionally or as necessary 4% almost never or never 1% don’t know/can’t say how often …but one in six boards engage on the issue never, occasionally, or only as necessary. TCS Risk and Cybersecurity Study
  • 5. 5 The more financially successful a company is, the more likely the board is to focus on cyber risk and security. How often the board includes cyber risk and security in its agenda 1% 44% 46% 5% 5% 42% 41% 14% 3% 36% 44% 14% 4% Very regularly/every board meeting Periodically Occasionally/as necessary Almost never or never Don’t know/can’t say Pacesetters All others Followers TCS Risk and Cybersecurity Study
  • 6. 6 Most CISOs and CROs feel at least somewhat confident they can avoid a major cybersecurity incident. CISO and CRO confidence in their company’s ability to avoid a major cyber incident in the next 3 years resulting in significant financial or reputational loss 14% 46% 31% 9% 0.33% Very confident Somewhat confident Neutral/not sure Increasingly less confident Not at all confident TCS Risk and Cybersecurity Study
  • 7. 7 While 4 in 10 C-suite executives could be said to be proactive on issues of risk and cybersecurity, over half tend to be reactive, at best. How much attention is given to cyber risks and security issues by business unit leaders and its C-level executives 42% 18% 33% 7% 42% of CISOs/CROs say other executives actively and frequently discuss cyber risks and security 33% of CISOs/CROs say other executives discuss cyber risks and security, but usually only when cyber threats are brought to their attention 18% of CISOs/CROs say other executives discuss cyber risks and security only when a cyberattack hurts business 7% of CISOs/CROs say other executives have hardly addressed cyber risk and security TCS Risk and Cybersecurity Study
  • 8. 8 Platforms and databases related to cash flow, customer data and intellectual property are the highest targets. The supply chain and, especially, the digital ecosystem enabling much of global business should get higher consideration, given the increasing number of attacks using these as a vector. 8 Finance Customer databases Rank 4 7 3 1 5 2 6 9 10 Corporate functions where CISOs and CROs expect to see the greatest number of cyberattacks between now and 2025 R&D Sales/ecommerce Marketing Manufacturing plants/production/procurement Human resources Legal Distribution/supply chain Ecosystem partners TCS Risk and Cybersecurity Study
  • 9. 9 Boards of directors are less likely to think ecosystem risks warrant closer focus–which may represent a blind spot. not included: “There have been no cyber risk or security priorities arising out of board discussions” (3%) Rank Cyber risk and security priorities arising out of board-level discussions TCS Risk and Cybersecurity Study 4 3 1 5 2 6 Increasing cybersecurity maturity of our company relative to industry peers and adopting emerging models like zero trust Ensuring cyber risks are holistically managed and mitigated across our company and its larger ecosystem Creating and adopting a comprehensive cybersecurity governance model Focusing on ecosystem risks and collaboration for oversight, monitoring, and mitigation of those risks Creating a “resilience-by-design” culture and adopting such standards and controls Improving visibility of cyber risks and ensuring compliance to regulatory and industry requirements
  • 10. 10 Cloud platforms have edged out on-premises servers and traditional data centers as the more secure option. Most companies find cloud platforms as or more secure compared to on-premises infrastructure 34% 28% 32% 6% 34% say cloud platforms are more secure than on-premises servers or data centers 28% say the cyber risks of cloud platforms and on-premises services or data centers are about the same 32% say cloud platforms are less secure than on-premises servers or data centers 6% of companies can’t come to an agreement about the cybersecurity risks of cloud platforms TCS Risk and Cybersecurity Study
  • 11. 11 Firms that are more financially successful are also more likely to opt for the security of cloud platforms over traditional infrastructures. Enterprise attitudes toward cloud platforms 44% 27% 25% 4% 38% 25% 31% 6% 27% 31% 36% 6% Pacesetters All others Followers TCS Risk and Cybersecurity Study Cloud platforms are more secure than on-premises servers or data centers The cyber risks of cloud platforms and on-premises services or data centers are about the same Cloud platforms are less secure than on-premises servers or data centers We can’t come to an agreement about the cybersecurity risks of cloud platforms
  • 12. 12 The cyber executives of cloud-friendly companies are more likely to feel confident about their security posture toward internal risks and external threats. Perceptions of external/internal risks and threats, versus enterprise attitudes toward cloud platforms n = 607; not shown: companies that can't come to an agreement about cybersecurity risk of cloud platforms We have external/internal risks and threats well in hand Our ability to handle external/internal risk and threats is typical for our industry External/internal risks and threats outstrip our defenses, policies and controls 41% 34% 25% 34% 38% 29% 29% 39% 32% Cloud platforms are more secure than on-premises servers or data centers The cyber risks of cloud platforms and on-premises services or data centers are about the same Cloud platforms are less secure than on-premises servers or data centers TCS Risk and Cybersecurity Study
  • 13. 13 Recruiting and retaining advanced cyber skills are the greatest challenges for CISOs and CROs 8 Rank 4 7 3 1 5 2 6 12 11 9 10 Skill sets to manage, engineer and support cybersecurity technology The greatest challenges to cybersecurity and risk mitigation initiatives according to CROs and CISOs Workforce changes/requirements (e.g., work from home, bring-your-own-device, etc.) Assessing cyber risks and quantifying relevant costs Reliance on legacy IT systems Accumulated complexity of our own business processes and operations Difficulty in demonstrating return on cybersecurity investments Lack of collaboration across enterprise units (business, IT and security) Lack of diversity (including of thought and experience) in staff assessing cyber risks and threats Difficulty in mandating that our current vendors adopt advanced technologies and policies Budget constraints Competing interests for the board or senior leadership Outdated, siloed and non-integrated security tools TCS Risk and Cybersecurity Study
  • 14. 14 Getting and keeping top talent is becoming more difficult for cybersecurity positions. Recruiting and retaining needed cyber skills We have not had a difficult time doing so this past year We have had a difficult time doing so this past year Recruiting top talent with cyber risk and security skills Retaining top talent with cyber risk and security skills 56% 44% 58% 42% TCS Risk and Cybersecurity Study
  • 15. 15 Cloud-friendly organizations have a five-point advantage in recruiting and retaining top talent compared to cloud-avoidant companies Embrace of cloud platforms, vs challenge in recruiting and retaining top talent with cyber skills combined "recruiting" and "retention" answers; not shown: "We can't come to an agreement on cloud" We have not had a difficult time recruiting/retaining top talent with cyber skills We have had a difficult time recruiting/retaining top talent with cyber skills Cloud platforms present less cyber risk than on-premises servers or traditional data centers 59% 59% 54% 41% 41% 46% The cyber risks of cloud platforms present no more or less risk than the cyber risks inherent in on-premises servers and traditional data centers Cloud platforms present more cyber risk than on-premises servers or traditional data centers TCS Risk and Cybersecurity Study
  • 16. 16 2 roles, 2 continents, 4 industries: 607 participants • Chief risk officers: 50% • Chief information security officers: 50% • North America HQ: 54% • Europe/UK HQ: 46% • Banking and financial services: 25% • Utilities: 25% • Media and information services: 25% • Manufacturing: 25% TCS Risk and Cybersecurity Study
  • 17. 17 TCS Risk and Cybersecurity Study To learn more about how chief risk and information security officers perceive the challenges they’re up against, visit on.tcs.com/risk-cybersecurity
  • 18. 18 Make risk and cybersecurity a boardroom agenda TCS Risk and Cybersecurity Study TCS Thought Leadership Institute TCS Risk and Cybersecurity Study