Most execs spent less than a day on cyber risk last year – Marsh study
.jpg)
Most board members and senior executives responsible for their organizations’ cyber risk management had less than a day last year to spend focused on cyber risk issues, according to a new report from Marsh and Microsoft.
This lack of time to focus on cyber risk comes as a concern as cyber threats hit an all-time high – and as confidence in organizations’ ability to manage cyber threats declines, according to the 2019 Marsh Microsoft Global Cyber Risk Perception survey. The survey scrutinized 1,500 organizations to determine the current state of cyber risk perceptions and risk management.
Nearly 80% of organizations now rank cyber risk as a top-five concern, up from 62% in 2017, when the study was last conducted. However, only 11% expressed a high degree of confidence in their ability to assess, prevent and respond effectively to cyber threats. That’s down from 19% in 2017. Cyber risk management remains a challenge for many organizations, the survey found.
“For example, while nearly two-thirds (65%) of organizations surveyed identified a senior executive or board member as the main owner of cyber risk management, only 17% of c-suite executives and board members said they spent more than a few days in the past year focusing on the issue,” Marsh said. “More than half, 51%, spent several hours or less.”
While 88% of survey respondents identified their information technology and information security functions as the primary owners of cyber risk management, 30% of IT respondents said they spent only a few days or less over the past year focusing on cyber risk.
“We are well into the age of cyber risk awareness, yet too many organizations still struggle with creating a strong cybersecurity culture with appropriate levels for governance, prioritization, management focus, and ownership,” said Kevin Richards, head of cyber risk consulting at Marsh. “This places them at a disadvantage both in building cyber resilience and in confronting the increasingly complex cyber landscape.”
“In an era of transformational technology and more interconnected supply chains, the cyber risk management practices and mindsets of yesterday no longer suffice and may actually inhibit innovation,” said Joram Borenstein, general manager of Microsoft’s Cyber Security Solutions Group. “It is incumbent upon senior leaders to focus on these issues for the welfare of their organizations, their customers, their employees, and beyond.”
source insurancebusinessmag
Industry: Cyber Security
Latest Jobs
-
- Senior Presales Consultant | Managed Security Services | London
- London
- N/A
-
Senior Presales Consultant – Managed Security Services Location: London-commutable (Hybrid) A well-established cyber consultancy is seeking a Senior Presales Consultant to drive growth across its managed security services / advisory portfolio. This hybrid role bridges commercial and technical expertise supporting solution design, shaping customer proposals, and guiding conversations from scoping through to delivery. Key experience: Background in managed security services, including SOC operations and threat detection Strong knowledge of cloud and on-prem security tooling (SIEM, EDR, IAM) Penetration testing Proven ability to translate technical concepts into clear business value Confident in customer-facing engagements and pre-sales delivery Experience contributing to bids, proposals, and RFI/RFP responses To find out more contact me on 07884666351 Visa sponsorship is unfortunately not available for this role.
-
- New Business | Cyber Security | Overlay sales (UK Based- London commutable)
- London
- N/A
-
New Business Sales Hunter needed | Cybersecurity (UK Based- London commutable) Are you looking for uncapped commission, a fun and sociable team that drives success with no politics? If so...You must Have a demonstrable history of sales success in Cyber Security Follow Weatons law. The role: Seeking a proven New Business Sales Hunter to join an established, successful and expanding team. New business focused - £500-750 GP Sell a blend of security services & professional services. Ideal experience selling some or all of the following Cyber strategy & risk management Managed detection & response (MDR) Penetration testing Compliance & audit support You: Strong cybersecurity/IT services sales track record. Confident selling into mid-market & enterprise. UK based - London commutable Hunter mindset, full sales cycle ownership. Don't just send an email to apply give me a call on 07884666351
-
- New Business Sales Hunter | Cyber Security (UK Based)
- London
- To attract the right person
-
New Business Sales Hunter needed | Cybersecurity (UK Based) Are you looking for uncapped commission, a fun and sociable team that drives success with no politics? If so...You must Be UK based - and able to achieve UK SC clearance. (sorry no visas) Have a demonstrable history of sales success in Cyber Security Follow Weatons law. The role: Seeking a proven New Business Sales Hunter to join an established, successful and expanding cyber security firm. New business focused - £1m GP year one target (ramped). Sell a blend of security services & professional services. Ideal experience selling some or all of the following Cyber strategy & risk management Managed detection & response (MDR) Penetration testing Compliance & audit support You: Strong cybersecurity/IT services sales track record. Confident selling into mid-market & enterprise. UK based - London commutable 1x per week. Hunter mindset, full sales cycle ownership. Don't just send an email to apply give me a call on 07884666351