Geekzone: technology news, blogs, forums
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.
GCSB releases cyber resilience report
Posted on 5-Nov-2018 10:54 | Filed under: News

The Government Communications Security Bureau (GCSB) has released a benchmark assessment of cyber security resilience across New Zealand’s nationally significant organisations.


The GCSB’s National Cyber Security Centre (NCSC) surveyed 250 nationally significant organisations to establish their cyber security resilience and the potential impacts if they were compromised.


“The survey is the first of its kind in New Zealand and provides a useful benchmark for cyber security resilience across New Zealand’s nationally significant organisations,” GCSB Director-General Andrew Hampton said.


“Overall it appears that digital transformation is outpacing investment in cyber security and as a result we found a range of resilience levels.


“While most organisations are heading in the right direction, more work needs to be done to improve cyber resilience across the board.


“Organisations should be optimistic about their ability to improve their security posture where they are able to take a strategic and systematic approach to it.


“There are a lot of dedicated cyber security professionals, doing their best with limited resources.  We hope this report will help them lift the cyber security dialogue within their organisations and to drive the change that is needed,” Mr Hampton said.


Key findings include:


  • 19 percent of organisations have a dedicated Chief Information Security Officer, while the remaining 81 percent either didn’t have the function, or had it is as part of a broader role.
  • 73 percent of organisations increased their spending on cyber security in the past year, however this investment has not necessarily translated into increased confidence in their cyber security resilience.
  • Spending has increased across all areas of cyber security but a focus on tools and vulnerability assessment has come at the cost of investment in people. As a result, 52 percent of organisations reported they had insufficient skilled staff for their security requirements.
  • Levels of confidence in the ability to respond to cyber security incidents are not high, with 41 percent of organisations either mildly confident or not confident in their ability to detect an intrusion.
  • 63 percent reported having a cyber security incident response plan, and of those who had a plan 33 percent had not tested that plan in the past year.
  • Of those organisations who use managed service providers, 36 percent have no mechanism to confirm whether the vendor is delivering on the agreed level of security.

In addition to the unclassified report being released today, each organisation who participated in the survey has received an individualised and commercially sensitive report. These reports provide a range of actions organisations can take to help increase their resilience including:


  • Establishing clear accountability for cyber security;
  • Regular reporting on cyber security, including near misses, to executives and directors;
  • Balancing strategic investment in assets and staff over vulnerability assessment;
  • Identification of critical information assets and risks to those assets;
  • Having a dedicated budget line for IT security;
  • Preparing and regularly testing a cyber security incident response plan, and
  • Ensuring third party vendors include specific cyber security service level agreements and the right to be audited on cyber security performance.


Trending now »

Hot discussions in our forums right now:

New wave of streaming services coming
Created by kingdragonfly, last reply by rugrat on 21-Jan-2019 21:43 (34 replies)
Pages... 2 3

Kids on planes
Created by Rikkitic, last reply by eracode on 22-Jan-2019 15:29 (30 replies)
Pages... 2

Created by MurrayM, last reply by tripper1000 on 22-Jan-2019 14:45 (29 replies)
Pages... 2

Constant issues with iPhone software. Any others?
Created by Coil, last reply by RunningMan on 22-Jan-2019 15:22 (28 replies)
Pages... 2

School costs
Created by xpd, last reply by jonathan18 on 22-Jan-2019 09:50 (53 replies)
Pages... 2 3 4

Getting a mortgage with over 50% deposit headache (but Approved by BNZ!)
Created by Linux, last reply by chimera on 22-Jan-2019 15:31 (253 replies)
Pages... 15 16 17

Smoke alarm dilemma
Created by Rikkitic, last reply by eracode on 22-Jan-2019 16:30 (22 replies)
Pages... 2

RBI Performance down from 70Mbps to 30Mbps.....why?
Created by MT1001, last reply by coffeebaron on 22-Jan-2019 15:02 (40 replies)
Pages... 2 3