Less than half of global executives believe GDPR compliance is relevant to their business, while a fifth admit they don't know - NTT Security Risk:Value report shows
Concerning numbers admit they do not know where corporate data is stored, or if all of their critical data is securely stored
LONDON, July 10, 2017 (GLOBE NEWSWIRE) -- Many global business decision makers are unaware of the implications of the forthcoming General Data Protection Regulation (GDPR), as well as other compliance regulations like PCI-DSS and ISO27001/2, with one in five admitting they do not know which regulations their organization is subject to. This is according to the 2017 Risk:Value report, commissioned by NTT Security, the specialized security company of NTT Group, which looks at attitudes to risk and the value of information security to the business.
The survey of 1,350 non-IT executives across 11 countries, reveals that just four in ten (40%) respondents globally believe their organization will be subject to the EU GDPR. Perhaps of most concern is the one in five (19%) who admit they don't know which compliance regulations they are subject to. In the UK, just 39% of respondents currently identify GDPR as a compliance issue, and 20% admit they don't know, while those outside of Europe are even less aware. Just a quarter of business decision makers in the US, 26% in Australia, and 29% in Hong Kong believe they are subject to the GDPR, despite the fact it will apply to any business holding or collecting data on European citizens.
Coming into force on 25 May 2018, the legislation leaves companies with less than a year to comply with strict new regulations around data privacy and security and could result in penalties of up to €20 million or 4% of global annual turnover, whichever is higher
With data management and storage a key component of the GDPR, the Risk:Value report also reveals that a third of respondents do not know where their organization's data is stored, while just 47% say all of their critical data is securely stored. Of those that know where their data is, fewer than half (45%) describe themselves as 'definitely aware' of how new regulations will affect their organization's data storage. Those in Financial Services & Banking and Computer Services & Technology are most likely to know where their data is stored and which compliance regulations they are subject to.
"In an uncertain world, there is one thing organizations can be sure of and that's the need to mark the date of 25 May 2018 in their calendars," according to Garry Sidaway, SVP Security Strategy & Alliances at NTT Security. "While the GDPR is a European data protection initiative, the impact will be felt right across the world for anyone who collects or retains personally identifiable data from any individual in Europe. Our report clearly indicates that a significant number do not yet have it on their radar or are ignoring it. Unfortunately many organizations see compliance as a costly exercise that delivers little or no value, however, without it, they could find themselves losing business as a result, or paying large regulatory fines."
Quantifying the threat - reputation, revenue and resignations
- One in eight respondents believe that poor information security is the 'single greatest risk' to the business. The most commonly reported risk is 'competitors taking market share' (28%).
- According to Risk:Value, 57% of decision makers believe a data breach is inevitable at some point.
- The impact of a breach will be two-fold, with respondents expecting a breach to affect their long-term ability to do business, together with short-term financial losses. More than half (55%) cite loss of customer confidence, damage to reputation (51%) and financial loss (43%), while 13% admit staff losses and 9% say senior executive resignations would impact them.
- The estimated cost of recovery, on average, has increased from $907,000 in 2015 to $1.35m in 2017.
- The estimated impact on revenue has decreased from 12.51% in 2015, but is still a significant 9.95%.
- Only just over half (56%) of decision makers report that preventing a security attack is a regular item on the board agenda, suggesting that more needs to be done to get it taken seriously at a boardroom level.
- Respondents estimate on average that only 15% of their organization's IT budget is spent on information security - although this figure has gone up from 13% in 2015 and 10% in 2014. Many report that they spend less on security than on R&D (31%), sales (28%), and marketing (27%).
The need to drive a culture of security
- 56% of business decision makers say their organization has a formal information security policy in place, up from 52% in 2015. Just over a quarter (27%) are in the process of implementing one - 1% have no policy or plans to implement one.
- However, while the vast majority (79%) say their security policy has been actively communicated internally, a minority (39%) says employees are fully aware of it. Germany and Austria (85%) are above average in communicating the policy, together with the US (84%) and the UK (83%).
- The percentage of respondents with an official information policy is unevenly distributed on a per-country basis. In Sweden the figure is just 30%, while in the UK, 72% claim an official policy. By sector, healthcare leads the way, with 69% of companies claiming an official information security policy. Finance comes a close second (66%).
- Less than half (48%) of organizations have an incident response plan, although 31% are implementing one. But just 47% of decision maker respondents are fully aware of what the incident response plan includes.
Download the 2017 Risk:Value report: www.nttsecurity.com/RiskValue2017 .
For additional Risk:Value resources: https://www.nttcomsecurity.com/en/templates/WideangleLandingPage.aspx?p=2875&pv=14629 .
Notes for editors:
Commissioned by NTT Security, the 2017 Risk:Value research was conducted by Vanson Bourne in March to May 2017. 1,350 non-IT business decision makers (35% at C-level) were surveyed in the US, UK, Germany and Austria, Switzerland, France, Sweden, Norway, Hong Kong, Australia and Singapore. Organizations had more than 500 employees and were selected across a number of core industry sectors. Approximately a third of responses came from the financial services sector.
About Vanson Bourne
Vanson Bourne is an independent specialist in market research for the technology sector. Our reputation for robust and credible research-based analysis, is founded upon rigorous research principles and our ability to seek the opinions of senior decision makers across technical and business functions, in all business sectors and all major markets. For more information, visit www.vansonbourne.com.
About NTT Security
NTT Security is the specialized security company of NTT Group. With embedded security we enable Group companies (Dimension Data, NTT Communications and NTT DATA) to deliver resilient business solutions for clients' digital transformation needs. NTT Security has 10 SOCs, seven R&D centers, over 1,500 security experts and handles hundreds of thousands of security incidents annually across six continents.
NTT Security ensures that resources are used effectively by delivering the right mix of consulting and managed services for NTT Group companies - making best use of local resources and leveraging our global capabilities. NTT Security is part of the NTT Group (Nippon Telegraph and Telephone Corporation), one of the largest ICT companies in the world. Visit nttsecurity.com to learn more.
For further information, contact Press Office, t. email@example.com or visit www.nttsecurity.com.
The issuer of this announcement warrants that they are solely responsible for the content, accuracy and originality of the information contained therein.
Source: NTT Security (UK) Ltd via Globenewswire
Följ NASDAQ OMX
Abonnera på våra pressmeddelanden.
Senaste pressmeddelandena från NASDAQ OMX
Integrum uppmärsammas av Frankrikes president Emmanuel Macron och Stefan Löfven17.11.2017 19:02 | Pressmeddelande
PRESSINFORMATION 17 november 2017 Integrum blev vid fredagens EU-toppmöte i Göteborg som ett av få inbjudna att presentera bolagets tankestyrda proteser för Frankrikes president Emmanuel Macron och Stefan Löfven. Detta i samband med det strategiska partnerskap för innovation mellan Frankrike och Sverige som undertecknades vid mötet med mål att presentera konkreta framsteg inom två år. Integrum var utvalt som ett bra exempel på innovativt företag som utvecklar avancerade medicintekniska produkter där samspelet mellan människa och teknik skapar stort värde för användaren. Under mötet med president Emmanuel Macron och Stefan Löfven demonstrerades Integrums världsunika proteser som styrs med hjälp av tankekraft. Tekniken möjliggör att personer kan få en protes direkt kopplat till skelett, nerver och muskler utan att ha elektroder tillfälligt fästa utanpå huden. "Det är självklart mycket hedrande att I
CrownBio Launches an Innovative Grant Program to Fund Advancements in Preclinical Oncology Research17.11.2017 18:07 | Pressmeddelande
SANTA CLARA, Calif., Nov. 17, 2017 (GLOBE NEWSWIRE) -- Crown Bioscience, a wholly-owned subsidiary of Crown Bioscience International (TWSE:ticker 6554) and a global drug discovery and development services company providing translational platforms to advance oncology, inflammation, cardiovascular and metabolic disease research, announces the launch of a grant program supporting oncology research scientists which provides funding for projects that show promise for scientific advancement of Patient Derived Xenograft (PDX) technology. Research Grants up to $50,000 will be awarded to projects focused on accelerating the pace of preclinical innovation and novel PDX methodologies that improve clinical predictions with sound science. The program offers an opportunity for investigators to receive funding for projects that may not receive support through traditional funding channels. Submitted proposals will be reviewed and selected by CrownBio's Scientific Steering Committee with the goa
Barings Backs Sentinel Capital Partners in Acquisition of Nekoosa17.11.2017 17:00 | Pressmeddelande
CHARLOTTE, N.C., Nov. 17, 2017 (GLOBE NEWSWIRE) -- Barings, one of the world's leading asset management firms, announced today that it served as Lead Agent on a senior secured credit facility to support Sentinel Capital Partners in its acquisition of Nekoosa ("Nekoosa" or the "Company"). Headquartered in Nekoosa, Wisconsin, the Company is a leading manufacturer of specialty paper and film products used in the graphics and commercial print markets, including application and pressure-sensitive tapes, specialty synthetic papers, sheeted digital and offset grade carbonless paper, and extruded film products. Nekoosa serves a highly diverse base of more than 70,000 commercial print and graphics shops in 65 countries. Barings served as lead senior lender on the transaction, which included a senior term loan and a revolving credit facility. "Sentinel is pleased to have Barings' support on our investment in Nekoosa," said Scott Perry, a partner with Sentinel Capital Partner
At SC17, ExaScaler and PEZY Computing Unveil Gyoukou Supercomputer with a High Combined Green500/Top500 Ranking16.11.2017 23:29 | Pressmeddelande
ExaScaler and PEZY Computing Also Take Top Three Green500 Positions DENVER, Nov. 16, 2017 (GLOBE NEWSWIRE) -- At SC17, ExaScaler and PEZY Computing unveiled their Gyoukou supercomputer whose Green500 and Top500 rankings attest to a unique combination of high efficiency and computing power. The Gyoukou supercomputer is installed at the Yokohama Research Institute in Japan. (Video: PEZY Liquid immersion cooling) PEZY supercomputers leverage 48V Factorized Power, a high efficiency, high density power distribution architecture. PEZY's CPUs are co-packaged with Vicor's Power-on-Package ("PoP") Modular Current Multipliers ("MCMs"), which enable efficient, direct 48V to sub-1V current multiplication at the XPU. ExaScaler and PEZY Computing also achieved the #1, #2 and #3 positions on the Green500. These supercomputer system installations also utilize 48V Factorized Power. Come see us at SC17 at Booth 633 where ExaScaler / PEZY Computing will be
ELS Educational Services, Inc. Launches New Vacation English Program Starting January 201816.11.2017 20:59 | Pressmeddelande
New York, New York, Nov. 16, 2017 (GLOBE NEWSWIRE) -- ELS Educational Services, Inc. - one of the leading language services providers worldwide - has launched a new vacation English language program, ELS Language Experience+, which is set to begin enrollment for January 2018. "Here at ELS, our students and their English language goals always come first, and we are proud to introduce ELS Language Experience+ as an exciting new addition to the many quality programs we offer them," said ELS Chief Operating Officer, Reiji Terasaka. "This conversation-oriented, flexible new vacation English program allows students to make the most of their English instruction while gaining an invaluable cultural experience at the same time." ELS Language Experience+ concentrates on everyday speaking, communication skills and discussion, within a flexible course structure (three or six hours of study per day). Courses offered include: Everyday English, Grammar in Action, D
Global SD-WAN Partnership between CallTower and Aryaka to Deliver High-Performance Cloud Communication Solutions to Global Enterprises16.11.2017 16:02 | Pressmeddelande
SAN MATEO, Calif., Nov. 16, 2017 (GLOBE NEWSWIRE) -- Aryaka, the leading global SD-WAN provider, today announced a new partnership with CallTower, an industry-leading unified communications and collaboration company, to provide global enterprise customers with fast and reliable, high-quality cloud service connectivity. CallTower's partnership with Aryaka will deliver improved performance of their unified communications solutions to global enterprise customers. CallTower has linked their data centers with the Aryaka global network to deliver secure, reliable connectivity with quality of service guarantees for mission critical real-time communication applications. CallTower Cisco and Microsoft unified communications solutions, including Cloud Contact Center customers will now be able to add Aryaka's global SD-WAN service to further optimize, and enhance reliability over a secure network. "In addition to our unified communications offering, we have seen tremendous growth i
I vårt pressrum kan du läsa de senaste pressmeddelandena, få tillgång till pressmaterial och hitta kontaktinformation.Besök vårt pressrum