Beginning Next Week: InsideCounsel will become part of Corporate Counsel. Bringing these two industry-leading websites together will now give you comprehensive coverage of the full spectrum of issues affecting today's General Counsel at companies of all sizes. You will continue to receive expert analysis on key issues including corporate litigation, labor developments, tech initiatives and intellectual property, as well as Women, Influence & Power in Law (WIPL) professional development content. Plus we'll be serving all ALM legal publications from one interconnected platform, powered by, giving you easy access to additional relevant content from other InsideCounsel sister publications.

To prevent a disruption in service, you will be automatically redirected to the new site next week. Thank you for being a valued InsideCounsel reader!


Cybersecurity faces roadblocks

New study from the Ponemon Institute shows barriers to cyber security

Last month, Ponemon Institute released part one of their installment “Exposing the Cybersecurity Cracks: Canada” where, after surveying over 250 IT security practitioners in Canada, it was revealed that 60 percent of Canadian companies do not believe they are equipped to fight cyber-attacks and data theft. Now, Ponemon Institute uncovered the second part to their two-part study entitled, “Roadblocks, Refresh and Raising the Human Security IQ.”

According to the report, better communication and information about cybersecurity, investment in skilled personnel and technologies, and adoption of security measures can reduce the risk of online threats.

Findings of the study show communication roadblocks within Canadian companies. Twenty-three percent of cyber security teams never speak with their executive team about online security, which leads to barriers to reducing the risk of online attacks.

These companies are frequently disappointed with the level of protection from their security solutions and 51 percent replied they are dissatisfied with their company’s security investment. Almost 30 percent of the respondents said that if they had the resources and opportunity, they would do a complete overhaul of their current security system.

In order to fill these cracks in cyber security, the study recommends raising human security IQ. Of these companies, 47 percent do not educate their employees about cybersecurity and 31 percent do not believe their company is investing enough in skilled personnel and technologies.



March attack may have compromised databases in the Office of Personnel Management

Security and the infrastructure: Take the time to review your network

Data 101: What are the basics of data protection?


Furthermore, in order to more efficiently manage cyber-attacks, Ponemon offers these solutions:

  • Invest in technologies to eliminate the uncertainty of cyber risks
  • Provide better access to threat intelligence and real-time defenses
  • Use all-encompassing defense strategies that incorporate Web, email chains and SSL/TLS communications
  • Eliminate gaps and overlap by assessing security solution capabilities and deployments against a comprehensive kill chain model
  • Increase education and awareness programs to emphasize the importance of cyber-attacks and reducing high-risk behaviors

Chairman and founder of Ponemon Institute, Larry Ponemon, states, “Advanced persistent threats and data exfiltration attacks rank as the top fears for IT security professionals. These fears manifest because they believe their technology is in need of an overhaul and there is a widening gap in the knowledge and resource sharing among IT security professionals and executive staff. Encouragingly, the survey revealed plans for technology and education investment in place for the future."

Contributing Author

author image

Jessica Liu

Jessica Liu is a sophomore at Haverford College, where she is majoring in political science. At InsideCounsel, she reports on news for the Women, Influence,...

Bio and more articles

Join the Conversation

Advertisement. Closing in 15 seconds.