TRENDING more employees from different industries . In August 2022 , 50 board directors were interviewed in each market across 12 countries : the US , Canada , the UK , France , Germany , Italy , Spain , Australia , Singapore , Japan , Brazil and Mexico .
The report explores three key areas : the cyberthreats and risks boards face ; their level of preparedness to combat those threats ; and their alignment with CISOs based on the CISO sentiments Proofpoint uncovered in its 2022 Voice of the CISO report . We found a disconnect between the two sides in cyber-risks , consequences and threats .
“ It is encouraging to see that cybersecurity is finally a focus of conversations across boardrooms ,” said Lucia Milică , Vice President and Global Resident CISO at Proofpoint . “ However , our report shows that boards still have a long way to go in understanding the threat landscape and preparing their organisations for material cyberattacks . One of the ways boards can boost preparedness is by getting on the same page with their CISOs . The board-CISO relationship is instrumental in protecting people and data and each side must strive towards more effective communication and collaborative effort to ensure organisational success .”
Proofpoint and CAMS ’ report highlights global trends , along with industry and regional differences among organisational leaders . Key global findings include :
• There is a disconnect between the boardroom and CISOs when evaluating the risk posed by today ’ s sophisticated cybercriminals : 65 % of board members believe that their organisation is at risk of material cyberattack in the next 12 months , compared to 48 % of CISOs .
• Board members and CISOs have similar concerns about the threats they face : Board members ranked email fraud / Business Email Compromise ( BEC ) as their top concern ( 41 %), followed by cloud account compromise ( 37 %) and ransomware ( 32 %). While email fraud / BEC and cloud account compromise are also among top concerns for CISOs , they view insiders as their top threat , whereas board members rate insiders as a lower concern .
• Awareness and funding do not translate into preparedness : Although 75 % of those surveyed feel their board understands their organisation ’ s systemic risk , 76 % think they have invested adequately in cybersecurity , 75 % believe their data is adequately protected and 76 % discuss
26 INTELLIGENTCIO EUROPE www . intelligentcio . com