Research from by the cyber resiliency expert Mimecast has revealed that around 40% of IT decision makers say that the C-level executives are the weakest link in their organisations’ cyber security operation.
The study, which was conducted in March, also reveals that 38% of IT decision makers believe the CEO undervalues the role of email security to protect the organisation and 40% admit they are unsure whether their CEO can protect themselves from a personal attack. With 90% of cyber attacks starting with email, it’s everyone’s responsibility to take email security more seriously.
Interestingly, employees perform far better when it comes to cyber hygiene in the workplace. With advancing attacks and growing conflict between IT and C-suite, the findings highlight that it is increasingly important that cyber resilience starts from the top for it to be effective.
Other highlights include:
Steve Malone, Director Product Management at Mimecast commented: “These findings highlight how critical it is for the C-suite to be part of every organisation’s cyber education process.
“Part of the problem lies with the distance between IT on the ground and the C-suite but effective cyber resilience starts from the top. Businesses need to ensure there is security expertise on the board of directors and place IT cyber security and cyber resilience into risk mitigation functions. In addition, organisations must benchmark security controls and risk management programmes, recognising that upper management sets the tone of security culture.”