More than a third (35 percent) of Chief Information Security Officers (CISOs) admit to ignoring the National Cyber Security Centre’s (NCSC’s) cybersecurity guidance.
This is despite 48 percent of CISOs revealing that their organisation was hit by a ransomware attack over the past year, according to a new survey from Absolute Security,
The NCSC has issued regular guidance warning of increased ransomware threats as well as procedures for incident response.
Absolute surveyed 250 UK CISOs at enterprise organisations, via independent polling agency Censuswide. It found almost two-thirds (64 percent) feel that the UK has a poor cyber resilience strategy, failing to define clear response policies to recover from cyber breaches, while 77 percent believe the UK is falling behind the US and EU when it comes to national cyber policies. This may offer a possible explanation for CISOs ignoring NCSC guidance.
“Ransomware and state-sponsored attacks are increasingly on the rise, both of which are a case of when, not if. Now, more than ever, organisations need a robust cyber resilience strategy in place to respond and recover from attacks when they happen,” said Andy Ward, VP international for Absolute Security.
If you liked this content…
“While no set of standards or frameworks will eliminate the certainty of an eventual incident, NCSC guidance is there to help protect CISOs, who shouldn’t just ignore nationwide protocols. Disregarding NCSC advice puts organisations at much greater risk. It jeopardises jobs, causes significant financial and reputation damage, and potentially even heaps personal liability on security leaders.”
Mobile and remote threats persist
Cyberattacks have more than doubled since the start of the Covid-19 pandemic, according to the IMF, with 72 percent of CISOs stating that remote working has complicated their organisation’s cyber resilience posture.
In total, 73 percent believe that remote working devices are the biggest weakness for their organisation, as these devices often operate weeks or even months behind most enterprise patching policies.
“The increased attack surface facing organisations due to remote devices presents a difficult challenge for CISOs as they ward off the rising number of cyber threats. Implementing an approach of cyber resilience can significantly bolster cyber defences through increasing visibility for CISOs and their security teams,” said Ward.
“Adopting technology that can continuously monitor remote devices, applications and networks can alert centralised security teams to suspicious behaviour, giving them the ability to freeze or shut off potentially compromised devices to prevent threat actors from moving laterally across a network and causing major damage. These devices can then be repaired to patch up weak security controls and mitigate future cyber risks.”
