Juniper Research has released a report into the business attitudes towards and experiences of cyber security and cyber attacks in SMEs and enterprises. The research revealed that three quarters of companies feel they are currently secure, even though half of those businesses also reported having previously experienced a cyber attack.
Increasingly, businesses are moving critical infrastructure online, making them more vulnerable to digital threats. Yet, the study found that despite increased concern and spend on cyber security over the last year, there is a high degree of complacency, with few common practices in response to this threat. Overall, 86% of respondents believe they are doing enough to mitigate the impact of cyber attacks.
Most respondents still think it’s enough to have the IT or security department involved in mitigating the effect of cyber attacks, with 33% considering the IT department solely responsible for handling security threats. In addition, almost two thirds of respondents stated that cyber security is not their department’s responsibility. And while over three quarters of businesses have a board that is involved in assessing cyber security preparedness, only one quarter have a dedicated security executive. While 87% of businesses reported having some form of continuity plan in place, fewer than half of businesses have secure practice guidelines to ensure employees know how to keep the business safe.
Juniper’s report found that nearly 90% of respondents reported having a plan in place for when a data breach occurs, but only 56% of respondents believe they are secure when it comes to digital threats, and 52% of businesses still do not have any secure practice guidelines.