A Trend Micro survey has revealed that only 31% of UK businesses have sufficient staffing to handle round-the-clock cybersecurity.
This leaves many businesses vulnerable even outside business hours, when cyber attacks can occur.
Attack surface management, a technique used to measure and understand risk across an organization’s digital presence, is employed by only 32% of respondents.
Lack of a comprehensive risk assessment may leave companies unaware of potential vulnerabilities.
Additionally, only 34% of organizations use a proven regulatory framework like the NIST Cybersecurity Framework.
These frameworks provide a structured approach to cybersecurity, helping organizations implement best practices and meet regulatory requirements.
Leadership accountability in doubt
The study suggests that these cybersecurity deficiencies may stem from a lack of leadership and accountability at the top levels of organizations.
Globally, almost half of respondents claimed that their company’s leadership does not view cybersecurity as their responsibility.
A disconnect between leadership and cybersecurity teams can lead to an inconsistent attitude towards cyber risk, with 54% of UK respondents saying their organisation’s approach varies from month to month.
