Cyber Governance Health Check 2018
This report details how FTSE 350 companies are managing their cyber security risks.
Documents
Details
The annual FTSE 350 Cyber Governance Health Check assesses and reports on cyber security risk management in the UK鈥檚 350 largest firms (the 鈥淔TSE 350鈥�.) For its fifth iteration, the Department for Digital, Culture, Media and Sport (DCMS) worked with Deloitte, EY, KPMG and PwC to deliver the 2018 Cyber Health Check.
The research was carried out in October and November 2018, with the final report published in March 2019.
The results
You can read the press notice summarising the results of the health check .
The report sets out how the boards of the UK鈥檚 biggest firms must do more to be cyber aware. Many boards still don鈥檛 fully understand the potential impact of a cyber attack. The report shows that less than a fifth (16%) of boards have a comprehensive understanding of the impact of loss or disruption associated with cyber threats. This is despite almost all (96%) having a cyber security strategy in place. Additionally, although the majority of businesses (95%) do have a cyber security incident response plan, only around half (57%) actually test them on a regular basis.
The main report (see above) also includes an infographic summary of the key results.
Background
Insights from the Health Check inform the Government鈥檚 policy on cyber security and contribute to improving the guidance offered to industry. The results of previous surveys have directly fed into key pieces of guidance and support provided to boards by the . The survey has helped to shape the , which will help to better equip boards in their engagement with cyber risk.
Winning Moves, an independent data-driven consultancy organisation, hosted the online survey, analysed responses and prepared the interactive, confidential benchmark reports which have been made available to participating companies. The Government does not have access to any company-identifiable data.
Benchmarking reports
If your organisation participated in this year鈥檚 survey, you can access your individual company benchmarking report .
Previous publications
Cyber Governance Health Check 2017 (published August 2017)
Cyber Governance Health Check 2015/16 (published May 2016)
Cyber Governance Health Check 2014 (published Jan 2015)
Cyber Governance Health Check 2013 (published Nov 2013)
These reports are part of the Government鈥檚 National Cyber Security Strategy which aims to make the UK the safest place to live and do business online.