Convercent In The News

Survey Roundup: Boards Want More Cyber-Effectiveness Data

A look at some recent surveys and reports dealing with risk and compliance issues

Paying for What?: A survey of around 1,130 C-suite executives by Deloitte found 63% expect their board in the next year to ask for more data about the effectiveness of cybersecurity programs, while 57% expect increased regulatory oversight. The survey found 17% of executives expressed high confidence in their cyber program.

“Corporate executives in all sectors are feeling obliged to provide greater transparency and uniformity when it comes to cybersecurity reporting—alone or as part of an enterprise-wide risk management program,” said Andrew Morrison, principal at Deloitte Risk and Financial Advisory. Deloitte sponsors WSJ Risk & Compliance Journal.

Deloitte also surveyed 5,400 C-suite executives and found 47% said their company hasn’t yet started or is in the early stages of preparing for the implementation of the Financial Accounting Standards Board’s revenue-recognition rules, which take effect in January.

See Something? Say Goodbye: A survey of 5,025 corporate employees by advisory services firm Gartner found 30% said they witnessed at least one compliance violation at work in the last year. Those workers were twice as likely to leave the company. Fifty-nine percent who said they saw wrongdoing were actively looking for a new job, compared with 27% who were looking but didn’t observe bad behavior.

Board Women: A survey of around 200 C-suite executives of public and privately held U.S. banks by Bank Director found 77% said their organization has at least one female director, up from 67% last year. Just 14% have three or more female board members, while 35% said finding female directors is a top priority.

Train Delays: A survey of 26 current and former chief ethics and compliance officers at large companies by LRN Corp. found 40% said their board holds senior executives accountable for bad behavior. About half say their boards never get training about their ethics and compliance responsibilities, while just over half say their boards spend two hours or less a year discussing ethics and compliance issues.

Connect the Dots: A survey of 106 ethics and compliance professionals by compliance software firm Convercent found one-third said the difficulty of connecting ethics to better business performance is the main reason they have trouble building an ethical corporate culture. Twenty-four percent cited lack of collaboration with other departments.

Ethical Opportunity: The Institute of Business Ethics released a briefing paper saying companies should use the European Union’s General Data Protection Regulation as an opportunity to stress the ethical use of personal data.

Lack of Compensation: A survey of around 900 business owners with employees by insurance firm Insureon and data directory Manta found 26% said they don’t provide workers’ compensation insurance.

Energy Angst: A survey of around 2,000 information and cybersecurity professionals by technology association Isaca found 71% named the energy industry as the sector most vulnerable to an attack, followed by communications firms (70%) and financial institutions (64%).

Text Disconnect: A survey of professionals in federal, state, county and city governments by information-archiving company Smarsh found while 70% said their organization permits texting for official business communication, just 46% said they retain such messages.

Attack Adaptation: A survey of 40 chief information-security officers at financial institutions by endpoint-security company Carbon Black found 23% said they have dealt with cybercriminals who are adapting their attacks in response to moves the CISOs are making to thwart those moves.

View Article

Want More Convercent News?

We’re making moves, waves and headlines. See what else we’re up to.