August 1, 2018 By Ravi Srinivasan 2 min read

Each new data breach that makes headlines causes companies to grow more and more concerned about cybersecurity. In response, businesses are upping their investments in cybersecurity with the hopes of shielding their systems from cybercriminals, protecting their data and keeping their names out of the news.

The Challenge of Cybersecurity

For many organizations, this effort starts with security assessments that involve rationalizing current security investments and prioritizing new investments to secure their businesses. Companies today invest considerable resources in many different security solutions, but often struggle to have a clear idea of what would constitute their ideal security approach. Chief information security officers (CISOs) may be left wondering which areas to prioritize and how their cybersecurity measures compare to those of their peers.

And it’s hard to blame them. CISOs must secure modern enterprise networks and multi-cloud-based infrastructures, protect against targeted threats aimed toward mobile devices and endpoints, guard critical business data and more — all while ensuring employees and end users can access the applications and services they need to run their businesses securely and efficiently. With over 500 cybersecurity vendors out there, the landscape of solutions is complex and often noisy.

Stakes Are High for CISOs

What happens if CISOs don’t get it right? Wasted resources represent the best-case scenario: CISOs may overinvest in some areas of cybersecurity (often indicated by too many tools and insufficient skill) while leaving their blind spots vulnerable. At worst, the company’s name ends up in the next breach headline. Substantial financial penalties can follow: The global average cost of a data breach is a staggering $3.86 million.

So, the stakes are high. Not only will a breach compromise a company’s brand and reputation, but it can jeopardize its viability as well.

Accurate Self-Assessment Is Key

But there is some good news: There are resources available to help CISOs assess the maturity of their cybersecurity posture so they can get a better picture of where they stand and where to focus.

One such assessment tool, designed by IBM and underpinned by in-depth client engagements, helps companies assess their own readiness for a digital transformation. A user can complete the free assessment in about 15 minutes, and then use the findings to identify their strengths and weaknesses across 10 essential security dimensions, benchmark their results against industry peers and get helpful information tailored to the areas in which they have the highest need for improvement. The industry peer benchmark lets CISOs know exactly how they stack up against their peers.

With a clearer idea of how their overall security systems are performing relative to their industries, companies can avoid a data breach, allowing them to steer through the complexity and noise — and focus on making the headlines with good news. Try this self-assessment and take advantage of the available insights from the in-depth IBM Security client engagements worldwide.

Complete the self-assessment now

More from CISO

Making smart cybersecurity spending decisions in 2025

4 min read - December is a month of numbers, from holiday countdowns to RSVPs for parties. But for business leaders, the most important numbers this month are the budget numbers for 2025. With cybersecurity a top focus for many businesses in 2025, it is likely to be a top-line item on many budgets heading into the New Year.Gartner expects that cybersecurity spending is expected to increase 15% in 2025, from $183.9 billion to $212 billion. Security services lead the way for the segment…

On holiday: Most important policies for reduced staff

4 min read - On Christmas Eve, 2023, the Ohio State Lottery had to shut down some of its systems because of a cyberattack. Around the same time, the Dark Web had a “Leaksmas” event, where cyber criminals shared stolen information for free as a holiday gift. In fact, the month of December 2023 saw more than 2 billion records breached and 1,351 disclosed security incidents, according to research from IT Governance — an increase of 332% and 187%, respectively, over the month of…

Overheard at RSA Conference 2024: Top trends cybersecurity experts are talking about

4 min read - At a brunch roundtable, one of the many informal events held during the RSA Conference 2024 (RSAC), the conversation turned to the most popular trends and themes at this year’s events. There was no disagreement in what people presenting sessions or companies on the Expo show floor were talking about: RSAC 2024 is all about artificial intelligence (or as one CISO said, “It’s not RSAC; it’s RSAI”). The chatter around AI shouldn’t have been a surprise to anyone who attended…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today