ICS Value, April 2013 = 1718 (Base = 1000, March 2011)
The Index of Cyber Security is a measure of risk. A higher index value indicates a perception of increasing risk, while a lower index value indicates the opposite.
Introduction - April 2013
The Index of Cyber Security rose by 1.8% over the previous month, slower than the 2.4% rise we witnessed the previous month. This in fact is the one of the slowest month-on-month increases we have seen since the inception of the Index. The increase is largely due to a significant worsening of the public perception of the state of cyber security, and reported increases in the threat perception from attacks by nation states. For the the first time, the risk of data destruction finds a spot in the risks that rose the fastest during the month
The top sub-indices for the Index did not change, though their relative positions changed slightly.
- Public perception of the state of cyber insecurity was the worst perceived sub-index in the minds of security practitioners.
- The activist-hacktivist threat was rated the number two risk by our respondents.
- Risk from counterparties, ie the risk from information compromise as a result of sharing information with insecure third parties (counterparties, vendors, partners etc), was rated as the number three risk by our respondents.
- Respondents reported continued improvements in information sharing by firms in their industry.
All risk indicators except that for information sharing were up when compared to the previous month.
As before, in the coming days, we will share with our respondents the detailed report from this survey, outlining each of the component sub-indices that constitute the aggregate index. We continue to expand our respondent base each month and are looking for qualified referrals to security practitioners. If you would like to participate in this project, or know of someone who might be a valuable contributor to this effort, please do let us know. Our contact information is available under the 'Contacts' tab on this website.