Canadian cyber security is languishing due to poor communication and disappointing security investments, according to research from the Ponemon Institute. A two-part report revealed that almost a quarter of cyber teams in Canada never speak with their executive team about IT security issues.
The report, called "Exposing the Cyber Security Cracks," surveyed 236 ICT and security professionals in Canada. Over half (51 percent) said that their organizations had been frequently or very frequently disappointed in their security investments. Almost one in three wanted a complete overhaul of the current enterprise security systems.
Human capital was another problem, with 69 percent of respondents not believing that their companies invested enough in skilled personnel and technologies to manage cyber security effectively. Almost half of all companies in the survey failed to provide cyber security education to employees.
The lack of investment is creating security problems for Canada's organizations. Just over a third of respondents (36 percent) said that their employers had suffered at least one substantial cyber attack in the past year, resulting in the infiltration of networks or enterprise systems. Almost half of all respondents did not have enough intelligence to assess attempted attacks.