2. Cybersecurity posture survey
» 48 responses so far (34 universities; 8 colleges; 1 research institute)
» Just under half (46%) have a strategic lead for cybersecurity at their
institution. 58% have dedicated cybersecurity posts within their
organisation
» Just over half (52%) have a CSIRT, but only 10% have staff available
24/7 to respond to security incidents
» Only two institutions have a SOC
» The prevalence of a cybersecurity budget appears to have increased
since 2015 and the amount attributed to the budget also appears to
have increased since then
Interim findings:
2
13/04/2017 Network Security - Birds of a Feather
3. Cybersecurity posture survey
3
0
1
2
3
4
5
6
7
8
9
10
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 2829 30 31 32 33 34 35 36 37 38 39 40 41 42 43 444546 47 48
How well respondents feel their institution is protected currently
Not at all well protected
(little or no controls in
place)
Very well protected
(comprehensive
controls in place)
4. Cybersecurity posture survey
» Cyber Essentials security certification: 19% achieved already, 38% are
working towards and 23% are considering completing
» Cyber Essentials Plus security certification: 6% achieved already, 19%
working towards, 31% are considering completing
» ISO27001 security certification: 2% achieved already, 13% working
towards, 21% considering completing
Interim findings:
4
13/04/2017 Network Security - Birds of a Feather
5. Cybersecurity posture survey
Current biggest cybersecurity threats:
5
phishing
user education/lack of
awareness
malware
DDoS ransomware
lack of awareness/understanding/investment
from senior management
data leaks
13/04/2017 Network Security - Birds of a Feather
As you may have seen on UK-security and some other mailing lists we are keen to get some feedback from you in order to provide the cybersecurity services and products that will best support and protect your institutions and the Janet network. Thank you to all those of you who have already completed the questionnaire, but we would appreciate it, if those of you who haven’t yet done so would visit this link to answer a few questions about your institution’s security posture. It shouldn’t take more than 15 minutes to complete and we would really appreciate some more responses to enable us to prioritise our activities and continue to develop the cybersecurity services and functions that you need.
5 universities have had 2 responses
Average score for how well respondents feel their institution is protected currently is 5.8 out of 10
As you may have seen on UK-security and some other mailing lists we are keen to get some feedback from you in order to provide the cybersecurity services and products that will best support and protect your institutions and the Janet network. Thank you to all those of you who have already completed the questionnaire, but we would appreciate it, if those of you who haven’t yet done so would visit this link to answer a few questions about your institution’s security posture. It shouldn’t take more than 15 minutes to complete and we would really appreciate some more responses to enable us to prioritise our activities and continue to develop the cybersecurity services and functions that you need.
5 universities have had 2 responses
As you may have seen on UK-security and some other mailing lists we are keen to get some feedback from you in order to provide the cybersecurity services and products that will best support and protect your institutions and the Janet network. Thank you to all those of you who have already completed the questionnaire, but we would appreciate it, if those of you who haven’t yet done so would visit this link to answer a few questions about your institution’s security posture. It shouldn’t take more than 15 minutes to complete and we would really appreciate some more responses to enable us to prioritise our activities and continue to develop the cybersecurity services and functions that you need.
5 universities have had 2 responses