2015 Information security breaches survey

We have been commissioned by the Department for Business, Innovation and Skills (BIS) to survey companies across the UK on cyber security incidents and emerging trends. This survey aimed to provide greater awareness amongst UK business of the risks, insights on how companies are mitigating those risks (or not) and key trends. The survey results can also provide companies with information to benchmark themselves against others in their sector and beyond.

The survey asks organisations throughout the UK about:

  • Worst breaches of Information Security
  • Emerging trends with respect to the use of technology
  • Up and coming trends in Information Security

The key observations from the 2015 survey were:

  • The number of security breaches has increased, the scale and cost has nearly doubled. Eleven percent of respondents changed the nature of their business as a result of their worst breach.
  • Not as many organisations increased their spending in information security, and fewer organisations than in previous years expect to spend more in the future.
  • Nearly 9 out of 10 large organisations surveyed now suffer some form of security breach – suggesting that these incidents are now a near certainty. Businesses should ensure they are managing the risk accordingly.
  • Despite the increase in staff awareness training, people are as likely to cause a breach as viruses and other types of malicious software.
  • When looking at drivers for information security expenditure, ‘Protecting customer information’ and ‘Protecting the organisation’s reputation’ account for over half of the responses.
  • The trend in outsourcing certain security functions and the use of ‘Cloud computing and storage’ continue to rise.

You can download the full technical report and executive summary for the 2015 information security breaches survey below: