A new Marsh survey has found that less than one-fifth (18%) of U.K. companies believe that they fully grasp their current cyber risk exposures.
Of the 100 companies polled, 18 reported that they fully understood their exposures, “while 25% said they had limited understanding of their cyber exposure, 52.8% said they had basic understanding and 4.2% said they had no understanding of their cyber exposure.”
However, only 17% stated that cyber was on their top 5 list of risks. 29% placed cyber on their top 10 risk register, 28% put it somewhere outside of their top 10, and 26% reported that cyber does not factor into their risk register at all.