Governance Attention for Digital Assets Lacking Suggests Carnegie Mellon Study


[author: ]

Carnegie Mellon CyLab has released a summary of its third survey regarding corporate governance of the privacy and security of digital assets.  CyLab is a centre for cyber security research. The 2012 study was sponsored by RSA, the security division of the information infrastructure company EMC. A summary of the study is available on the RSA website.

The authors of the 2012 study state that less than one-third of Global Forbes 2000 companies who responded to the survey are undertaking basic responsibilities for cyber governance.  Among the key findings were that:

  • 94% of respondents stated that they had a formal enterprise risk management program; however, half of the respondents reported that they do not have personnel in key privacy and security roles;
  • at the board level, audit committee responsibility for technology risks has decreased in favour of risk committees;
  • however, only one-third (approximately) of the respondents reported that their board of directors are focused on activities that would help protect against reputational or financial losses resulting from breaches of data security and the theft of confidential and proprietary information; and
  • more than half of the respondents reported that their boards do not review insurance policies for protection against cyber risks.

Categories: E-Commerce, Privacy, Records Retention

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Dentons | Attorney Advertising

Written by:


Dentons on:

Readers' Choice 2017
Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.