Although many companies are seeing cybersecurity threats rise, many lack the resources to handle these risks, a new global survey shows.
  Two-thirds (67%) of organizations report facing rising threats in their information security risk environment, according to EY’s Global Information Security Survey, which polled 1,825 organizations in 60 countries.
  More than half of the respondents (53%) said that a lack of skilled resources is one of the main difficulties they face in their information security protections. And 37% said their organizations have no real-time insight on cyber risks.
  A forward-looking, anticipatory stance with enabling of early detection and quick response can help organizations protect themselves, according to the report.
  “Organizations will only develop a risk strategy of the future if they understand how to anticipate cybercrime,” Paul van Kessel, EY’s global risk leader, said in a news release. “Cyberattacks have the potential to be far-reaching—not only financially, but also in terms of brand and reputation damage, the loss of competitive advantage, and regulatory noncompliance. Organizations must undertake a journey from a reactive to a proactive posture, transforming themselves from easy targets for cybercriminals into more formidable adversaries.”
  To properly anticipate and respond to risks, the report says organizations need:
  Support at the top.Leadership needs to make cybersecurity a core business issue and consider cybersecurity resources in a dynamic decision process.
  Prioritization of assets.Organizations need to understand the assets that are most valuable to the business and anticipate what the effects would be if they are breached.
  Understanding of their environment.Companies need awareness of the wider threat landscape and how it relates to the organization.
  Constant evolution.The nature and frequency of threats change over time, and organizations need to constantly learn and adjust to keep pace.
  Confidence in response. Scenario planning and regular rehearsals of incident response tactics can provide organizations with valuable preparation.
  “It’s only by reaching an advanced stage of cybersecurity readiness that an organization can start to reap the real benefits of its cybersecurity investments,” Ken Allan, EY’s global information security leader, said in a news release. “By putting the building blocks in place and ensuring that the program is able to adapt to change, companies can start to get ahead of cybercrime, adding capabilities before they are needed and preparing for threats before they arise.”
  來(lái)源:AICPA China

 USCPA官方微信
掃一掃微信,*9時(shí)間獲取USCPA考試時(shí)間提醒,體驗(yàn)全新備考方式
 
高頓網(wǎng)校特別提醒:已經(jīng)報(bào)名2014年USCPA 考試的考生可按照復(fù)習(xí)計(jì)劃有效進(jìn)行!另外,高頓網(wǎng)校2013年USCPA考試輔導(dǎo)高清課程已經(jīng)開通,通過(guò)針對(duì)性地講解、訓(xùn)練、答疑、模考,對(duì)學(xué)習(xí)過(guò)程進(jìn)行全程跟蹤、分析、指導(dǎo),可以幫助考生全面提升備考效果。
 
  報(bào)考指南:2014年USCPA報(bào)考指南 
  考前沖刺:USCPA 考試試題   考試輔導(dǎo)
  高清網(wǎng)課:USCPA網(wǎng)絡(luò)課程