Paradise Papers Revelations

Getting Back to Basics…the Shortfalls

44% 48% 54%DO NOT have an overall information security strategy

DO NOT have an employee security awareness program

DO NOT have an incident response process

Evaluating Business Partners through the Lens of the Cybersecurity

58%of enterprise organizations have

Service-Level Agreements with their business partners to specify

minimum cybersecurity standards compared to 36% of SMBs

47%of enterprise organizations evaluate the cybersecurity of supply chain/business

partners prior to conducting business

with them

31%say this has

resulted in termination

of contractsor relationships

What Prevents You From Focusing on Strategic Issues?

6%

13%

13%

15%

17%

19%

20%

20%

21%

27%

28%

28%

31%

Security around corporate travel/executive protection

Vendor issues

Cyber threats from inside the organization/Insider threats

Managing security/addressing risks around mobiledevices, BYOD

Gaining cooperation/buy-in from business leaders/stakeholders

Security around technology as a service/cloud computing

Ensuring customer privacy/confidentiality

Addressing security risks in disruptive technologies (e.g., cloud, mobile)prior to their implementation

Employee retention/hiring enough skilled workers

Employee awareness and cooperation issues

Meeting governance & compliance regulations

Budgetary constraints/demonstrating ROI

Cyber threats from outside the organization/APTs, DDoS Enterprise 26%SMB 37%

Government/NP 39%

Financial Services 40%

Healthcare 32%

Enterprise 24%SMB 31%

Security Executive 24%IT Executive 18%

Security is the CEO’s Priority for the CIO2017 2016 2015 2014

Total 646 571 558 722

Help reach specific goal for corporate revenue growth 32% 32% 40% 42%

Upgrade IT and data security to avoid cyber attack 32% 29% 23% 18%

Simplify IT 31% 23% 24% 22%

Lead a product innovation effort 28% 22% 21% 28%

Reduce IT spending 22% 15% 16% 13%

Enable new plan for customer acquisition & retention 21% 19% 22% 30%

Enable global expansion 19% 11% 13% 19%

Collaborate with the CMO or Chief Digital Officer on major customer initiative 17% 13% 18% 13%

Lead merger integration or due diligence on a potential acquisition 15% 12% 13% 12%

Strengthen business skills of IT staff 15% 16% 18%

Fill technical skill gaps of IT staff 9%

Partner with Chief Data Officer to identify new business or cost-saving opportunities 7%

UP FROM #8 PRIORITY IN 2014

Our Advice for Businesses

• C-suites must lead the charge – and Boards must be engaged

• Pursue resilience as a path to rewards – not merely to avoid risk

• Purposefully collaborate and leverage lessons-learned

• Stress-test interdependencies in your digital business ecosystem

• Focus more on risks involving data manipulation and destruction