2019 Digital Trust Insights:

Guide for the C-Suite and boards on cybersecurity

The state of cybersecurity

We set out to understand the state of cybersecurity in businesses by asking: how many organizations are demonstrating the strategic and practical shifts that acknowledge the increasingly complex, real-time, and systemic nature of cyber and related risks today?

We found the cyber activists, leaders if you will, who scored at the top on specific characteristics:

  • Trailblazers: connected to strategy and to the organization’s risk functions, connected in execution
  • Resilients (high resilience-quotient): have real-time enterprise-wide visibility into assets, dependencies, and processes
  • Data trust pacesetters: bring value creators on the business side with the value protectors on the risk and cyber side to use data for growth and innovation in secure and ethical manner

As you look over the 2019 Digital Trust Insights results, you will see the great distance between these top scorers on specific practices, attitudes, and outcomes and the rest of the respondents. But you will also see that even the leaders still have room to improve.

In cybersecurity, society wins when more organizations make the important shifts we describe. After all, as former Secretary of Homeland Security Jeh Johnson said, “Cybersecurity is a shared responsibility, and it boils down to this: in cybersecurity, the more systems we secure, the more secure we all are.”

Lessons learned across the three Digital Trust Insights survey

Questions to ask your cyber team

How well are you connected to the business side? Where does the organization’s strategy require the cyber team’s expertise and focus the most? How well are you educating the board and CEO on cybersecurity risks?

How well are you connected with the risk managers — the other value protectors like you — in your organization? Do you have a common risk dashboard and a playbook for responding to cyber threats?

Do you have real-time visibility into critical business services, assets, dependencies and emerging vulnerabilities?

How much have you invested in data and technology to improve threat intelligence, decision-making, and prioritization in your organization?

How well have you built in resilience by design and privacy by design in your organization?

How are you, the CISO, evolving in your role to better protect your organization?

Contact us

Sean  Joyce

Sean Joyce

US and Global Cybersecurity and Privacy Leader, PwC US

Joseph Nocera

Joseph Nocera

Cyber & Privacy Innovation Institute Leader, PwC US

Follow us

By submitting your email address, you acknowledge that you have read the Privacy Statement and that you consent to our processing data in accordance with the Privacy Statement (including international transfers). If you change your mind at any time about wishing to receive the information from us, you can send us an email message using the Contact Us page.