The cyber risk landscape was analyzed in a recent report by Critical Start. The report also examined the amount of risk organizations are willing to accept, resource constraints and key priorities for approaching cyber risk in the future. According to the report, 66% of respondents indicating that they have limited visibility and insight into their cyber risk profiles, hindering their ability to prioritize investments and allocate resources effectively.

Sixty-seven percent of organizations experienced a breach requiring attention within the last two years despite having traditional threat-based security measures in place. Further, 61% of security executives expressed concerns over the current misalignment between cybersecurity investments and their organization's risk reduction priorities.

Additional findings include:

  • 83% of organizations agree that a comprehensive, cyber risk reduction strategy will yield a reduction in the likelihood of a significant cyber incident occurring.
  • 74% of organizations are planning to prioritize proactive risk reduction strategies to stay ahead of the evolving threat landscape.
  • 93% of organizations plan to offload specific segments of cyber risk reduction workstreams or projects to security service providers within the next two years.

Read the full report here.