Pain & Progress: Cybersecurity and Business Risk Study

Despite their best efforts and investments, some organisations still experience difficulty as a result of organizational, operational and even cultural differences between their IT security and business risk functions. These gaps can be seen in the ways security and risk teams describe their environments, their challenges and even their relationships with one another. In early 2018, RSA commissioned the Cybersecurity and Business Risk Survey, executed by Enterprise Strategy Group (ESG), to learn more about the challenges and priorities of IT security and business risk professionals. This report, which reflects select findings from the survey, is intended as a glimpse into the minds of security and risk leaders. It describes the pain these teams feel in pursuit of protecting their organisations' digital assets and data, in the face of challenges from the forces of modernisation, malice and mandates. Encouragingly, at the same time, it reveals another trend, suggesting that these teams are breaking out of their silos and starting to work more closely together toward their common goal of helping their organisations manage digital risk.