In this research, we look at how organizations are approaching internal and external communication about cybersecurity risk. This includes assessing how they are:
1. Educating the workforce and third-parties about the risks and methods of control
2. Informing the board and senior management about how cybersecurity risks may affect organizational objectives
3. Reporting on assessments of cybersecurity risks and controls
Review the survey report with insights from author Michael Rasmussen, GRC 20/20 and survey sponsor OneTrust.