{"id":26080,"date":"2023-09-11T01:00:00","date_gmt":"2023-09-11T00:00:00","guid":{"rendered":"https:\/\/www.engineernewsnetwork.com\/blog\/?p=26080"},"modified":"2023-09-08T11:35:21","modified_gmt":"2023-09-08T10:35:21","slug":"more-uk-companies-failing-to-tackle-cyber-security-report","status":"publish","type":"post","link":"https:\/\/www.engineernewsnetwork.com\/blog\/more-uk-companies-failing-to-tackle-cyber-security-report\/","title":{"rendered":"More  UK companies failing to tackle cyber security \u2013 report"},"content":{"rendered":"\n<p>Increasing numbers of UK businesses are struggling to understand how to combat cybercrime, putting them at increased risk of cyberattacks resulting in crippling costs such as multi-million pound ransoms, litigation and reputational damage, according to a new report.<\/p>\n\n\n\n<p>The report \u2013 <a href=\"https:\/\/savanti.co.uk\/\"><strong><em>Effective Board Governance of Cyber Security: A source of competitive advantage<\/em><\/strong> <\/a>\u2013 is published by Savanti, one of the UKs leading cyber security consultancies.\u00a0<\/p>\n\n\n\n<p>The report highlights that global <strong><a href=\"https:\/\/blog.checkpoint.com\/2023\/01\/05\/38-increase-in-2022-global-cyberattacks\/#:~:text=Global%20cyberattacks%20increased%20by%2038,%2Dlearning%20post%20COVID%2D19\">cyberattacks increased by 38% in 2022, compared to 2021<\/a><\/strong>. In terms of numbers, across all UK businesses, there were <strong><a href=\"https:\/\/www.gov.uk\/government\/statistics\/cyber-security-breaches-survey-2023\/cyber-security-breaches-survey-2023#summary\">2.4 million instances of cybercrime in the last 12 months<\/a><\/strong>. According to Cybersecurity Ventures, the cost of cybercrime to business could reach \u00a38.4 trillion annually by 2025 and if it was measured as a country, cybercrime would be the <strong><a href=\"https:\/\/cybersecurityventures.com\/cybercrime-to-cost-the-world-8-trillion-annually-in-2023\/\">world\u2019s third-largest economy after the US and China<\/a><\/strong>.\u00a0<\/p>\n\n\n\n<p>High profile recent incidents include the <strong><a href=\"https:\/\/www.ft.com\/content\/b8c02080-a290-4af7-9702-03230aa9c922\">cyberattack on the Electoral Commission,<\/a><\/strong> where a breach undetected for 14 months resulted in access to voters\u2019 personal data including home addresses, images, email addresses, names and telephone numbers, as well as c<strong><a href=\"https:\/\/news.sky.com\/story\/bas-uk-staff-exposed-to-global-data-theft-spree-12896900\">yberattacks on companies including British Airways and Boots<\/a><\/strong> where employees\u2019 personal data, including bank and contact details, were accessible.<\/p>\n\n\n\n<p>The report says that although boards are increasingly concerned about cyber security, ranking it as one of their top priorities, many struggle to understand what to do, with the majority (59%) of directors saying their board is not very effective in understanding the drivers and <strong><a href=\"https:\/\/www.financialexecutives.org\/FEI-Daily\/October-2022\/The-Board-has-a-Bigger-Role-to-Play-in-Driving-Org.aspx\">impacts of cyber risks for their organisation<\/a><\/strong>.<\/p>\n\n\n\n<p>But the report says large enterprises with digitally-savvy, cyber-engaged executive teams have significantly higher revenue growth, valuations and net margins and effective cyber security also brings many top line benefits, including greater success rates when tendering for new clients, improved data insights, investor confidence and maintenance of share-holder value during mergers and acquisitions.<\/p>\n\n\n\n<p>The report makes a number of recommendations for boards to take, including having at least one board member with direct experience of cyber security issues; putting cyber security as a topic to be discussed at least on a quarterly basis at board meetings; and understanding how long it would take to recover from a disruptive cyber-attack such as ransomware.<\/p>\n\n\n\n<p>Richard Brinson, CEO of Savanti, said: \u201cMany investors see cyber as the canary in the coal mine for the health and resilience of a business \u2013 if a company can demonstrate effective cyber preparedness, it is a sign of the strength of their overall leadership, operations and governance.\u00a0<\/p>\n\n\n\n<p>\u201cBut while there has undoubtedly been progress in recent years on board governance of cyber security, many boards struggle to dispense their responsibilities.<\/p>\n\n\n\n<p>\u201cWe found many board members don\u2019t understand their unique role on cyber security, lack the right level of cyber awareness and are scared to turn to their Chief Information Security Officer to bridge this gap, for fear of exposing their lack of understanding.<\/p>\n\n\n\n<p>\u201cOur report makes several recommendations as to how boards can address this.\u00a0 For example, it\u2019s second nature to have finance and HR representation at board level, yet despite the growing risk of cyberattack, knowledge of cyber issues is at best under-represented, and at worst ignored.<\/p>\n\n\n\n<p>\u201cHaving at least one director with experience in, and capable of speaking at board level on cyber security would make a huge difference. More regular discussion of cyber issues at board meetings is also vital \u2013 for too many it\u2019s just an add-on that\u2019s discussed briefly once a year.\u201d<\/p>\n\n\n\n<p>The report also recommends boards take action to get ahead of the game on cyber regulation.<\/p>\n\n\n\n<p>Mr Brinson added: \u201cMany boards have their heads in the sand on cyber regulation. In the US, the Securities and Exchange Commission adopted rules in July requiring public companies to disclose within four days all cybersecurity breaches that could affect their bottom lines. It seems likely more cyber regulation will emerge in the coming years in the UK and Europe that will eclipse the current GDPR reporting rules.<\/p>\n\n\n\n<p>\u201cBusinesses need to get ahead of the curve. This means requirements for boards to report on relevant expertise at board and senior management level on cyber security, report on risk management arrangements and disclose all material incidents to the relevant public authority to build a more comprehensive shared picture of the emerging threat.\u201d<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Increasing numbers of UK businesses are struggling to understand how to combat cybercrime, putting them at increased risk of cyberattacks resulting in crippling costs such as multi-million pound ransoms, litigation and reputational damage, according to a new report. The report \u2013 Effective Board Governance of Cyber Security: A source of competitive advantage \u2013 is published &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-26080","post","type-post","status-publish","format-standard","","category-process"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>More UK companies failing to tackle cyber security \u2013 report - Engineer News Network<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.engineernewsnetwork.com\/blog\/more-uk-companies-failing-to-tackle-cyber-security-report\/\" \/>\n<meta property=\"og:locale\" content=\"en_GB\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"More UK companies failing to tackle cyber security \u2013 report - Engineer News Network\" \/>\n<meta property=\"og:description\" content=\"Increasing numbers of UK businesses are struggling to understand how to combat cybercrime, putting them at increased risk of cyberattacks resulting in crippling costs such as multi-million pound ransoms, litigation and reputational damage, according to a new report. The report \u2013 Effective Board Governance of Cyber Security: A source of competitive advantage \u2013 is published &hellip;\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.engineernewsnetwork.com\/blog\/more-uk-companies-failing-to-tackle-cyber-security-report\/\" \/>\n<meta property=\"og:site_name\" content=\"Engineer News Network\" \/>\n<meta property=\"article:published_time\" content=\"2023-09-11T00:00:00+00:00\" \/>\n<meta name=\"author\" content=\"admin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"admin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Estimated reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.engineernewsnetwork.com\\\/blog\\\/more-uk-companies-failing-to-tackle-cyber-security-report\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.engineernewsnetwork.com\\\/blog\\\/more-uk-companies-failing-to-tackle-cyber-security-report\\\/\"},\"author\":{\"name\":\"admin\",\"@id\":\"https:\\\/\\\/www.engineernewsnetwork.com\\\/blog\\\/#\\\/schema\\\/person\\\/4477342aea8e299c6a21761e513ea8e1\"},\"headline\":\"More UK companies failing to tackle cyber security \u2013 report\",\"datePublished\":\"2023-09-11T00:00:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.engineernewsnetwork.com\\\/blog\\\/more-uk-companies-failing-to-tackle-cyber-security-report\\\/\"},\"wordCount\":704,\"articleSection\":[\"Process\"],\"inLanguage\":\"en-GB\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.engineernewsnetwork.com\\\/blog\\\/more-uk-companies-failing-to-tackle-cyber-security-report\\\/\",\"url\":\"https:\\\/\\\/www.engineernewsnetwork.com\\\/blog\\\/more-uk-companies-failing-to-tackle-cyber-security-report\\\/\",\"name\":\"More UK companies failing to tackle cyber security \u2013 report - Engineer News Network\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.engineernewsnetwork.com\\\/blog\\\/#website\"},\"datePublished\":\"2023-09-11T00:00:00+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/www.engineernewsnetwork.com\\\/blog\\\/#\\\/schema\\\/person\\\/4477342aea8e299c6a21761e513ea8e1\"},\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.engineernewsnetwork.com\\\/blog\\\/more-uk-companies-failing-to-tackle-cyber-security-report\\\/#breadcrumb\"},\"inLanguage\":\"en-GB\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.engineernewsnetwork.com\\\/blog\\\/more-uk-companies-failing-to-tackle-cyber-security-report\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.engineernewsnetwork.com\\\/blog\\\/more-uk-companies-failing-to-tackle-cyber-security-report\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.engineernewsnetwork.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"More UK companies failing to tackle cyber security \u2013 report\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.engineernewsnetwork.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.engineernewsnetwork.com\\\/blog\\\/\",\"name\":\"Engineer News Network\",\"description\":\"The ultimate online news and information resource for today's engineer\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.engineernewsnetwork.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-GB\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.engineernewsnetwork.com\\\/blog\\\/#\\\/schema\\\/person\\\/4477342aea8e299c6a21761e513ea8e1\",\"name\":\"admin\",\"url\":\"https:\\\/\\\/www.engineernewsnetwork.com\\\/blog\\\/author\\\/admin\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"More UK companies failing to tackle cyber security \u2013 report - Engineer News Network","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.engineernewsnetwork.com\/blog\/more-uk-companies-failing-to-tackle-cyber-security-report\/","og_locale":"en_GB","og_type":"article","og_title":"More UK companies failing to tackle cyber security \u2013 report - Engineer News Network","og_description":"Increasing numbers of UK businesses are struggling to understand how to combat cybercrime, putting them at increased risk of cyberattacks resulting in crippling costs such as multi-million pound ransoms, litigation and reputational damage, according to a new report. The report \u2013 Effective Board Governance of Cyber Security: A source of competitive advantage \u2013 is published &hellip;","og_url":"https:\/\/www.engineernewsnetwork.com\/blog\/more-uk-companies-failing-to-tackle-cyber-security-report\/","og_site_name":"Engineer News Network","article_published_time":"2023-09-11T00:00:00+00:00","author":"admin","twitter_card":"summary_large_image","twitter_misc":{"Written by":"admin","Estimated reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.engineernewsnetwork.com\/blog\/more-uk-companies-failing-to-tackle-cyber-security-report\/#article","isPartOf":{"@id":"https:\/\/www.engineernewsnetwork.com\/blog\/more-uk-companies-failing-to-tackle-cyber-security-report\/"},"author":{"name":"admin","@id":"https:\/\/www.engineernewsnetwork.com\/blog\/#\/schema\/person\/4477342aea8e299c6a21761e513ea8e1"},"headline":"More UK companies failing to tackle cyber security \u2013 report","datePublished":"2023-09-11T00:00:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.engineernewsnetwork.com\/blog\/more-uk-companies-failing-to-tackle-cyber-security-report\/"},"wordCount":704,"articleSection":["Process"],"inLanguage":"en-GB"},{"@type":"WebPage","@id":"https:\/\/www.engineernewsnetwork.com\/blog\/more-uk-companies-failing-to-tackle-cyber-security-report\/","url":"https:\/\/www.engineernewsnetwork.com\/blog\/more-uk-companies-failing-to-tackle-cyber-security-report\/","name":"More UK companies failing to tackle cyber security \u2013 report - Engineer News Network","isPartOf":{"@id":"https:\/\/www.engineernewsnetwork.com\/blog\/#website"},"datePublished":"2023-09-11T00:00:00+00:00","author":{"@id":"https:\/\/www.engineernewsnetwork.com\/blog\/#\/schema\/person\/4477342aea8e299c6a21761e513ea8e1"},"breadcrumb":{"@id":"https:\/\/www.engineernewsnetwork.com\/blog\/more-uk-companies-failing-to-tackle-cyber-security-report\/#breadcrumb"},"inLanguage":"en-GB","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.engineernewsnetwork.com\/blog\/more-uk-companies-failing-to-tackle-cyber-security-report\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.engineernewsnetwork.com\/blog\/more-uk-companies-failing-to-tackle-cyber-security-report\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.engineernewsnetwork.com\/blog\/"},{"@type":"ListItem","position":2,"name":"More UK companies failing to tackle cyber security \u2013 report"}]},{"@type":"WebSite","@id":"https:\/\/www.engineernewsnetwork.com\/blog\/#website","url":"https:\/\/www.engineernewsnetwork.com\/blog\/","name":"Engineer News Network","description":"The ultimate online news and information resource for today's engineer","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.engineernewsnetwork.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-GB"},{"@type":"Person","@id":"https:\/\/www.engineernewsnetwork.com\/blog\/#\/schema\/person\/4477342aea8e299c6a21761e513ea8e1","name":"admin","url":"https:\/\/www.engineernewsnetwork.com\/blog\/author\/admin\/"}]}},"_links":{"self":[{"href":"https:\/\/www.engineernewsnetwork.com\/blog\/wp-json\/wp\/v2\/posts\/26080","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.engineernewsnetwork.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.engineernewsnetwork.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.engineernewsnetwork.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.engineernewsnetwork.com\/blog\/wp-json\/wp\/v2\/comments?post=26080"}],"version-history":[{"count":1,"href":"https:\/\/www.engineernewsnetwork.com\/blog\/wp-json\/wp\/v2\/posts\/26080\/revisions"}],"predecessor-version":[{"id":26081,"href":"https:\/\/www.engineernewsnetwork.com\/blog\/wp-json\/wp\/v2\/posts\/26080\/revisions\/26081"}],"wp:attachment":[{"href":"https:\/\/www.engineernewsnetwork.com\/blog\/wp-json\/wp\/v2\/media?parent=26080"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.engineernewsnetwork.com\/blog\/wp-json\/wp\/v2\/categories?post=26080"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.engineernewsnetwork.com\/blog\/wp-json\/wp\/v2\/tags?post=26080"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}