Fox Survey Finds Lack of Preparedness and Government Access to Data Top Data Security Agenda

June 23, 2016 – In The News

The first half of 2016 has been marked by prominent cyberattacks and significant debates about the future of data privacy. From data breaches at organizations and companies as diverse as the DNC and LinkedIn to the Apple encryption dispute, privacy and data security have been a constant feature of the news cycle.

Fox Rothschild polled 75 cybersecurity professionals and risk experts across insurance, legal and other industries in an effort to get a sense of their sentiments on critical issues at the NetDiligence Cyber Risk & Privacy Liability Forum, which took place on 6/7-6/8 in Philadelphia. The survey found that there is significant concern about senior management’s understanding of how data is, and can be, vulnerable, in addition to revealing that most experts believe the private sector is still not prepared – and generally lacks the knowledge – to respond effectively to a major cyber breach.

The full results of the survey can be found below:

1. How prepared do you think the private sector is to respond to a data breach?

65.33% (49) Somewhat prepared
20.00% (15) Very prepared
14.67% (11) Not prepared

2. Should the private sector be permitted to tell customers when the government subpoenas their data?

74.67% (56) Yes
25.33% (19) No

3. How accurately do you think senior management in the private sector can address the following – (i) what types of data does our company collect, (ii) who has access to that data, and (iii) how is that data stored?

50.67% (38) Somewhat accurately
36.00% (27) Not accurately
13.33% (10) Very accurately

4. Should the government have the ability to force the private sector to provide access to customer data that is not accessible?

84.00% (63) No
16.00% (12) Yes

5. As part of a cybersecurity strategy, which one of the following areas requires the most improvement by the private sector?

29.33% (22) Employee training
24.00% (18) Vendor management
18.67% (14) Security and protection of systems, networks, firewalls and applications
18.67% (14) Funding and resources
5.33% (4) Encryption of data
4.00% (3) Bring your own device (BYOD) security