Two in three bosses at Britain’s biggest businesses not trained to deal with cyber attack
One in ten FTSE 350 companies said they operate without a response plan for a cyber incident (ten percent) and less than a third of boards receive comprehensive cyber risk information (31 percent).
Separate new research finds charities are as susceptible to attacks as businesses Undertaken in the wake of recent high profile cyber attacks, the survey of the UK’s biggest 350 companies found more than two thirds of boards had not received training to deal with a cyber incident (68 percent) despite more than half saying cyber threats were a top risk to their business (54 percent).
There has been progress in some areas when compared with last year’s health check, with more than half of company boards now setting out their approach to cyber risks (53 percent up from 33 percent) and more than half of businesses having a clear understanding of the impact of a cyber attack (57 percent up from 49 percent).
The Government is fully committed to defending against cyber threats and a five-year National Cyber Security Strategy (NCSS) was announced in November 2016, supported by £1.9 billion of transformational investment.
This includes opening the National Cyber Security Centre and offering free online advice as well as training schemes to help businesses protect themselves. ■