Nearly 80 percent of German organizations aren’t prepared for a cyber security incident

Published: Friday, 05 February 2016 08:06

A Ponemon Institute survey of cyber resilience in German organizations reports that 79 percent of security executives state that their organization isn’t prepared for a cyber security incident. Furthermore, only 21 percent have the technology in place to respond to a cyberattack. This new independent study, The Cyber Resilient Organisation in Germany: Learning to Thrive against Threats benchmarks German organizations’ resilience to cyber threats.

Surprisingly, the German study also revealed that 54 percent rated their cyber resilience as high, suggesting a gap between perceived resilience and reality.

Germany is undergoing significant changes to its regulations around cybersecurity. The Upper House of the German Parliament ratified legislation on the cyber protection of critical infrastructure in July 2015 and German lawmakers have been driving the upcoming EU-wide Network and Information Systems Directive (NISD) and the General Data Protection Regulation (GDPR), which contain mandatory breach reporting requirements and require companies to clearly document their incident response strategies.

Key findings from the study include:

445 IT and security executives in Germany were surveyed for the report. This is the third report in a series of cyber resilient studies, with founding sponsor, Resilient Systems.

Download a copy of the The Cyber Resilient Organisation in Germany: Learning to Thrive against Threats report here.