NV-ISACA
With cybersecurity threats continuing to escalate worldwide, the ISACA/CMMI Institute Cybersecurity Culture Report found that just 5 percent of employees think their organization’s cybersecurity culture is as advanced as it needs to be to protect their business from internal and external threats. More than 4,800 business and technology professionals shared their insights in the global research study, conducted via online polling in June 2018. Results were released today at ISACA’s CSX North America cybersecurity conference in Las Vegas.
This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20181015005149/en/
Cybersecurity culture is a workplace culture in which security awareness and behaviors are integrated into everyone’s daily operations, as well as an executive leadership priority. In a threat-ripe environment, an effective cybersecurity culture can help employees understand their roles and responsibilities in keeping their organizations safe and customer data secure. However, just 34 percent of respondents say they understand their role in their organizations’ cyber culture.
Companies must take an all-hands-on-deck approach to counter cyberattack threats, the report summarizes.
“Enlisting the entire workforce to mitigate an enterprise’s cyber risk is an emerging practice,” says Doug Grindstaff II, SVP of Cybersecurity Solutions at CMMI Institute . “We are hearing a lot of feedback about how organizations can move the needle on employee involvement. It’s challenging, but organizations are rightly concerned by the growing sophistication of cyberattacks.”
Widespread employee involvement correlates strongly with the minority of organizations that have achieved strong satisfaction with their cybersecurity culture. Nine in ten employees (92 percent) at these organizations say that their C-level executives share an excellent understanding of the underlying issues, which may be why they loop-in their employees so well; 84 percent of employees at these organizations say they understand their role in cybersecurity.
Other critical findings include:
- Many organizations lack the first—and all-important—step toward a cybersecurity culture: 42 percent of organizations do not have an outlined cybersecurity culture management plan or policy.
- Aligning the entire workforce with the organization’s cybersecurity policies requires significant capital: Organizations that report a significant gap between their current and desired cybersecurity culture are spending just 19 percent of their annual cybersecurity budget on training and tools; organizations that believe their cybersecurity culture is where it is supposed to be are spending more than twice as much (43 percent).
“A key motivator for organizations delaying investing in their cybersecurity cultures is a lack of awareness about the attempted threats and ongoing risks, as well as a lack of awareness about the assets at risk to cybersecurity threats,” said Rob Clyde, NACD Board Leadership Fellow and ISACA Board Chair. “However, individuals tend to underestimate the potential damage and overestimate technology’s ability to limit such incidents. Doing so puts their organizations at serious risk.”
To view the research, visit www.isaca.org/cybersecurity-culture-study .
About ISACA
Nearing its 50th year, ISACA ® (isaca.org ) is a global association helping individuals and enterprises achieve the positive potential of technology. ISACA equips professionals with the knowledge, credentials, education and community to advance their careers and transform their organizations.
Twitter: www.twitter.com/ISACANews
About CMMI ® Institute
A subsidiary of ISACA Enterprises, CMMI Institute (cmmiinstitute.com ) is the global leader in the advancement of best practices in people, process and technology. The Institute provides the tools and support for organizations to benchmark their capabilities and maturity by comparing their operations to best practices and identifying performance gaps.
Twitter: https://twitter.com/CMMI_Institute
View source version on businesswire.com: https://www.businesswire.com/news/home/20181015005149/en/
Contact:
ISACA Emily Van Camp, +1.847.385.7223 evcamp@isaca.org or Kristen Kessinger, +1.847.660.5512 kkessinger@isaca.org
Link:
Social Media:
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
GE HealthCare announces CE Mark for the Omni 128cm total body PET/CT system28.11.2025 12:00:00 CET | Press release
FOR USE IN CE-MARK EUROPEAN COUNTRIES ONLY GE HealthCare announces CE Mark for its Omni 128cm total body PET/CT,i a next-generation imaging system designed to advance precision care as well as cancer diagnosis, staging and treatment planning The new system is designed to accommodate head-to-thigh imaging in a single bed to improve workflow and efficiency, and enable a significant reduction in dose/scan time – all important factors, especially for populations like pediatric patients Built for both clinical and research excellence, the system may support the development and evaluation of new clinical pathways, novel PET tracers and emerging theranostic agents GE HealthCare today announced CE Mark for its next-generation Omni 128cm total body positron emission tomography / computed tomography (PET/CT) system,i a major milestone in its mission to advance precision care. Designed to advance cancer diagnosis, staging, therapeutic planning and treatment response monitoring, this innovative sy
King Abdulaziz Foundation Organizes the First Edition of the Forum on the “History of Hajj and the Two Holy Mosques” in Jeddah28.11.2025 10:53:00 CET | Press release
King Abdulaziz Foundation (Darah) held the first edition of the Forum on the “History of Hajj and the Two Holy Mosques”, convened as part of the program of the “Hajj Conference and Exhibition 2025” at the Super Dome Hall in Jeddah, in cooperation with the Ministry of Hajj and Umrah and the Guests of God Service Program, during the period from 9–12 November 2025. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251128600368/en/ King Abdulaziz Foundation Organizes the First Edition of the Forum on the “History of Hajj and the Two Holy Mosques” in Jeddah (Photo: AETOSWire) The forum’s activities were inaugurated following the announcement by His Royal Highness Prince Faisal bin Salman bin Abdulaziz Al Saud, Special Advisor to the Custodian of the Two Holy Mosques and Chairman of the Board of Directors of the King Abdulaziz Foundation, who declared the launch of the forum during the opening ceremony of the “Hajj Conference and Exh
VSO Unveils VCP v1.0, a First-of-Its-Kind Cryptographic Audit Protocol to Restore Trust in AI-Driven Markets28.11.2025 06:30:00 CET | Press release
New open standard replaces opaque server logs with mathematically verifiable evidence, helping market participants meet EU AI Act and MiFID II transparency requirements The VeritasChain Standards Organization (VSO), an independent international standards body, today announced the global release of VeritasChain Protocol (VCP) v1.0, an open cryptographic audit protocol designed to provide mathematically provable transparency for AI‑driven and algorithmic trading systems. VCP replaces mutable server logs with a tamper‑evident chain of cryptographic evidence, enabling regulators, brokers, exchanges and trading firms to move from trust‑based oversight to verification‑based supervision. Why This Matters Now The launch of VCP v1.0 comes at a pivotal moment for global market infrastructure: More than 80 proprietary trading firms collapsed between 2024 and 2025 amid regulatory scrutiny, opaque execution models and frozen payout disputes, leaving a trust gap between traders and platforms. Regula
Andersen Consulting styrker sine kompetencer med BMA27.11.2025 22:48:00 CET | Pressemeddelelse
Andersen Consulting udvider sine kompetencer inden for bæredygtighed og virksomhedsforandring gennem en samarbejdsaftale med BMA, der er et sydafrikansk firma, som arbejder for at styrke konkurrenceevnen i fremstillingsindustrien og fremme inkluderende industriel vækst. BMA, der blev etableret for mere end to årtier siden, arbejder på tværs af produktionsværdikæder – fra producenter til deres kunder – sammen med myndigheder og udviklingsagenturer for at fremme bæredygtig industriel konkurrenceevne. Gennem sine sektorfokuserede industrielle klynger leverer firmaet integrerede tjenester inden for industriel politik og strategisk udvikling, værdikædestrategi, produktionskonkurrenceevne og lean-rådgivning, reduktion af CO2-udledning samt udvikling af små og mellemstore virksomheder og samler interessenter omkring fælles prioriteter og skalerbare, langsigtede løsninger. "Bæredygtig produktion handler om mere end effektivitet. Det drejer sig om at skabe økosystemer, der er regenerative, resi
Stronghold’s SHx Token Lists on Uphold27.11.2025 16:00:00 CET | Press release
Multi-Chain Expansion Accelerates With New Listing on a Trusted Platform Supporting Both Stellar and Ethereum Stronghold announced that its SHx token is now available for retail users to trade on Uphold, the global multi-asset digital money platform known for its transparency, regulatory alignment, and seamless support for assets across both the Stellar and Ethereum networks. The listing marks a major milestone for SHx, expanding access for users and businesses who rely on Stronghold’s token for payments, settlements, and governance participation. "Uphold is one of the only platforms that provides seamless support for both Stellar and Ethereum-based tokens, making it a perfect fit for SHx as we grow our multi-chain ecosystem. This listing was championed by our community, and we’re thrilled to deliver on a request that so many SHx holders have been asking for." — Tammy Camp, CEO & Co-Founder, Stronghold SHx is Stronghold’s native utility token, powering interoperable payments, DeFi-base
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom