Scribd Logo
Upload

Welcome to Scribd!

  • 2023 SA Information Security Thermometer Research Report 15

    Uploaded by

    Bruce ROBERTSON
    3 views9 pages
    Cyber incidents can have significant financial, reputational, operational, and legal impacts on an organization. They can harm employees and disrupt business operations. The document discusses various types of cyber threats like business email compromise, ransomware attacks, and hacking of systems. It asks respondents to rate the occurrence of incidents and their level of concern regarding potential future incidents at their organization. It also questions whether the organization has security and incident response plans.

    Original Description:

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    Cyber incidents can have significant financial, reputational, operational, and legal impacts on an organization. They can harm employees and disrupt business operations. The document discusses various types of cyber threats like business email compromise, ransomware attacks, and hacking of systems. It asks respondents to rate the occurrence of incidents and their level of concern regarding potential future incidents at their organization. It also questions whether the organization has security and incident response plans.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    3 views9 pages

    2023 SA Information Security Thermometer Research Report 15

    Uploaded by

    Bruce ROBERTSON
    Cyber incidents can have significant financial, reputational, operational, and legal impacts on an organization. They can harm employees and disrupt business operations. The document discusses various types of cyber threats like business email compromise, ransomware attacks, and hacking of systems. It asks respondents to rate the occurrence of incidents and their level of concern regarding potential future incidents at their organization. It also questions whether the organization has security and incident response plans.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 9

    3/15/23, 3:43 PM The 2023 Information Security Thermometer

    The 2023 Information Security Thermometer

    * Required

    10. Incident Management


    (Estimated completion time: 5 mins)
    Cyber incidents can have a significant impact on an organisation, as outlined below:

    Financial impact - A loss of finances either due to theft, fraud or the cost of responding to the
    incident.
    People impact - Physical or psychological harm caused to employees or third parties.
    Business interruption / operational impact - Business disruption that prevents the
    organisation from operating normally.
    Brand and reputational impact - Reputational harm that can damage brand loyalty resulting
    in loss of revenue or share value.
    Legal and regulatory impact - Fines, penalties or litigation due to non-compliance or class
    action 
    lawsuits.
    Stakeholder impact - A loss of confidence by shareholders or the broader community in
    the organisation following a major incident.

    https://forms.office.com/pages/responsepage.aspx?id=i_oLrX6FCkO1bgA0PMDIoTq8GFulIJxMsoSr_wljBsFUMjI5UU45UjNCN0RSTzU2N0RENj… 1/9
    3/15/23, 3:43 PM The 2023 Information Security Thermometer

    113. Cyber threats facing your organisation: please rate the occurrence of the
    following incidents (or near misses) in your organisation over the last 12
    months.

    Business Email Compromise (Where an email account is compromised, a


    legitimate person is impersonated and a request for payment is made to
    victims): *

    Significant increase in attempts

    Small increase in attempts

    Small decrease in attempts

    Significant decrease in attempts

    No reports of this

    Unsure

    114. Internal fraud / collusion: *

    Significant increase in attempts

    Small increase in attempts

    Small decrease in attempts

    Significant decrease in attempts

    No reports of this

    Unsure

    https://forms.office.com/pages/responsepage.aspx?id=i_oLrX6FCkO1bgA0PMDIoTq8GFulIJxMsoSr_wljBsFUMjI5UU45UjNCN0RSTzU2N0RENj… 2/9
    3/15/23, 3:43 PM The 2023 Information Security Thermometer

    115. What is your level of concern of this incident taking place in your organisation
    in the near future? *

    Very concerned this may happen

    Somewhat concerned that this may happen

    Not at all concerned that this may happen

    116. Identity fraud (where personal information is stolen and used): *

    Significant increase in attempts

    Small increase in attempts

    Small decrease in attempts

    Significant decrease in attempts

    No reports of this

    Unsure

    117. What is your level of concern of this incident taking place in your organisation
    in the near future? *

    Very concerned this may happen

    Somewhat concerned that this may happen

    Not at all concerned that this may happen

    https://forms.office.com/pages/responsepage.aspx?id=i_oLrX6FCkO1bgA0PMDIoTq8GFulIJxMsoSr_wljBsFUMjI5UU45UjNCN0RSTzU2N0RENj… 3/9
    3/15/23, 3:43 PM The 2023 Information Security Thermometer

    118. Intellectual property / customer information theft: *

    Significant increase in attempts

    Small increase in attempts

    Small decrease in attempts

    Significant decrease in attempts

    No reports of this

    Unsure

    119. Physical assets theft (Computer / portable devices theft): *

    Significant increase in attempts

    Small increase in attempts

    Small decrease in attempts

    Significant decrease in attempts

    No reports of this

    Unsure

    120. What is your level of concern of this incident taking place in your organisation
    in the near future? *

    Very concerned this may happen

    Somewhat concerned that this may happen

    Not at all concerned that this may happen

    https://forms.office.com/pages/responsepage.aspx?id=i_oLrX6FCkO1bgA0PMDIoTq8GFulIJxMsoSr_wljBsFUMjI5UU45UjNCN0RSTzU2N0RENj… 4/9
    3/15/23, 3:43 PM The 2023 Information Security Thermometer

    121. Ransomware attacks (cyberextortion): *

    Significant increase in attempts

    Small increase in attempts

    Small decrease in attempts

    Significant decrease in attempts

    No reports of this

    Unsure

    122. Distributed Denial Of Service (DDOS) attacks: *

    Significant increase in attempts

    Small increase in attempts

    Small decrease in attempts

    Significant decrease in attempts

    No reports of this

    Unsure

    https://forms.office.com/pages/responsepage.aspx?id=i_oLrX6FCkO1bgA0PMDIoTq8GFulIJxMsoSr_wljBsFUMjI5UU45UjNCN0RSTzU2N0RENj… 5/9
    3/15/23, 3:43 PM The 2023 Information Security Thermometer

    123. Cryptojacking (where hackers mine cryptocurrency using resources they do not
    own): *

    Significant increase in attempts

    Small increase in attempts

    Small decrease in attempts

    Significant decrease in attempts

    No reports of this

    Unsure

    124. What is your level of concern of this incident taking place in your organisation
    in the near future? *

    Very concerned this may happen

    Somewhat concerned that this may happen

    Not at all concerned that this may happen

    https://forms.office.com/pages/responsepage.aspx?id=i_oLrX6FCkO1bgA0PMDIoTq8GFulIJxMsoSr_wljBsFUMjI5UU45UjNCN0RSTzU2N0RENj… 6/9
    3/15/23, 3:43 PM The 2023 Information Security Thermometer

    125. Hacking of company systems:


    *

    Significant increase in attempts

    Small increase in attempts

    Small decrease in attempts

    Significant decrease in attempts

    No reports of this

    Unsure

    126.
    Targeting of employees (scams or harassment attacks): *

    Significant increase in attempts

    Small increase in attempts

    Small decrease in attempts

    Significant decrease in attempts

    No reports of this

    Unsure

    https://forms.office.com/pages/responsepage.aspx?id=i_oLrX6FCkO1bgA0PMDIoTq8GFulIJxMsoSr_wljBsFUMjI5UU45UjNCN0RSTzU2N0RENj… 7/9
    3/15/23, 3:43 PM The 2023 Information Security Thermometer

    127. Does your organisation have an information security and incident


    management plan? *

    Yes – defined, approved by top management and tested regularly

    Yes – defined, but not approved by top management & not tested

    Informal / Ad hoc

    No defined information security & privacy incident management plan

    128. Does your organisation have an Incident Response Team (IRT)? *

    Yes – defined and efficient

    Yes – somewhat established but not yet put to the test

    Ad hoc / informal

    No – we outsource this capability

    Nothing yet in place

    Unsure

    129. Is there anything you would like to add to the information you have
    provided in this section? *

    Yes

    No

    Back Submit

    https://forms.office.com/pages/responsepage.aspx?id=i_oLrX6FCkO1bgA0PMDIoTq8GFulIJxMsoSr_wljBsFUMjI5UU45UjNCN0RSTzU2N0RENj… 8/9
    3/15/23, 3:43 PM The 2023 Information Security Thermometer

    Never give out your password. Report abuse

    This content is created by the owner of the form. The data you submit will be sent to the form owner. Microsoft is
    not responsible for the privacy or security practices of its customers, including those of this form owner. Never give
    out your password.

    Powered by Microsoft Forms |


    The owner of this form has not provided a privacy statement as to how they will use your response data. Do not
    provide personal or sensitive information.
    | Terms of use

    https://forms.office.com/pages/responsepage.aspx?id=i_oLrX6FCkO1bgA0PMDIoTq8GFulIJxMsoSr_wljBsFUMjI5UU45UjNCN0RSTzU2N0RENj… 9/9

    You might also like