Presentation is loading. Please wait.

Presentation is loading. Please wait.

CSI 2005 Computer Crime Survey Put together by J. Scott, 2006 Using Graphics and Text from the Published CSI/FBI 2005 Crime Survey.

Published byStone Watling Modified over 9 years ago

Similar presentations

Presentation on theme: "CSI 2005 Computer Crime Survey Put together by J. Scott, 2006 Using Graphics and Text from the Published CSI/FBI 2005 Crime Survey."— Presentation transcript:

1 CSI 2005 Computer Crime Survey Put together by J. Scott, 2006 Using Graphics and Text from the Published CSI/FBI 2005 Crime Survey

2 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 2 of 31

3 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 3 of 31 Eleven Key Findings for the 2005 Survey General Note: the number of responses increased dramatically in the 2005 survey, going from 494 responses in 2004 to 700 responses in 2005, even though the sample size remained the same. This was likely due in some measure to an increase in the number of reminders sent to the sample group. ❏ Virus attacks continue as the source of the greatest financial losses. Unauthorized access, however, showed a dramatic cost increase and replaced denial of service as the second most significant contributor to computer crime losses during the past year.

4 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 4 of 31 Eleven Findings for the 2005 Survey - 2 ❏ Unauthorized use of computer systems has increased slightly according to the respondents, but the total dollar amount of financial losses resulting from cyber crime is decreasing. Since the total number of respondents has dramatically increased, this implies a dramatic decrease in average total losses per respondent. Two specific areas (unauthorized access to information and theft of proprietary information) did show significant increases in average loss per respondent. ❏ Web site incidents have increased dramatically. ❏ State governments currently have both the largest information security operating expense and investment per employee of all industry/government segments.

5 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 5 of 31 Eleven Findings for the 2005 Survey - 3 ❏ Despite talk of increasing outsourcing, the survey results related to outsourcing are nearly identical to those reported last year and indicate very little outsourcing of information security activities. Among those organizations that do outsource some computer security activities, the percentage of activities outsourced is quite low. ❏ Use of cyber insurance remains low (i.e., cyber security insurance is not catching on despite the numerous articles that now discuss the emerging role of cyber security insurance). ❏ The percentage of organizations reporting computer intrusions to law enforcement has continued its multi-year decline. The key reason cited for not reporting intrusions to law enforcement is the concern for negative publicity.

6 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 6 of 31 Eleven Findings for the 2005 Survey - 4 ❏ A significant number of organizations conduct some form of economic evaluation of their security expenditures, with 38 percent using Return on Investment (ROI), 19 percent using Internal Rate of Return (IRR) and 18 percent using Net Present Value (NPV). ❏ Over 87 percent of the organizations conduct security audits, up from 82 percent in last year’s survey. ❏ The Sarbanes-Oxley Act has begun to have an impact on information security in more industry sectors than last year. ❏ The vast majority of respondents view security awareness training as important. However, (on average) respondents from all sectors do not believe their organization invests enough in it.

7 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 7 of 31 Survey Respondents by Industry

8 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 8 of 31 Respondents by Number of Employees

9 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 9 of 31 Survey Respondents by Revenue

10 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 10 of 31 Survey Respondents by Job Description

11 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 11 of 31 Percentage of IT Budget on Security

12 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 12 of 31 Computer Security Expenses / Employee

13 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 13 of 31 Computer Security Expenditure / Employee

14 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 14 of 31 Average Security Investment / Employee

15 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 15 of 31 Organizations using Metrics

16 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 16 of 31 Percentage Of Security Function Outsourced

17 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 17 of 31 Average Percent of Security Outsourced

18 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 18 of 31 External Insurance Against Risks

19 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 19 of 31 Unauthorized Use in Last 12 Months

20 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 20 of 31 Survey

21 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 21 of 31

22 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 22 of 31 Web Site Percentage Security Incidents

23 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 23 of 31

24 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 24 of 31 Security Technologies Used

25 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 25 of 31 Organizations Conduction Security Audits

26 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 26 of 31 Invest Appropriately on Security Awareness

27 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 27 of 31 Importance of Security Awareness Training

28 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 28 of 31 After Intrusion, What Actions Taken

29 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 29 of 31 Why Not Report to Law Enforcement?

30 CSI/FBI Crime Survey 2006 J. Scott 2006 Page 30 of 31 Percent of Organizations Sharing Information

31 CSI/FBI Crime SurveyJ. Scott 2006 Page 31 of 31 Survey

Download ppt "CSI 2005 Computer Crime Survey Put together by J. Scott, 2006 Using Graphics and Text from the Published CSI/FBI 2005 Crime Survey."

Similar presentations

Chapter 9 Analyzing Results Using The Income Statement

Chapter 9 Analyzing Results Using The Income Statement
WorkSafe Victoria is a division of the Victorian WorkCover Authority Guidance Note on the Prevention of Bullying and Violence at Work Evaluation results.

WorkSafe Victoria is a division of the Victorian WorkCover Authority Guidance Note on the Prevention of Bullying and Violence at Work Evaluation results.
Saving, borrowing and paying in Finland Spring 2011.

Saving, borrowing and paying in Finland Spring 2011.
The Financial Modernization Act of 1999, also known as the Gramm-Leach-Bliley Act (GLBA) UNDERSTANDING AND DEVELOPING A STRATEGIC PLAN TO BECOME COMPLIANT.

The Financial Modernization Act of 1999, also known as the Gramm-Leach-Bliley Act (GLBA) UNDERSTANDING AND DEVELOPING A STRATEGIC PLAN TO BECOME COMPLIANT.
8 - 1 ©2006 Prentice Hall Business Publishing, Auditing 11/e, Arens/Beasley/Elder Audit Planning and Analytical Procedures Chapter 8.

8 - 1 ©2006 Prentice Hall Business Publishing, Auditing 11/e, Arens/Beasley/Elder Audit Planning and Analytical Procedures Chapter 8.
Forensic and Investigative Accounting Chapter 16 Cybercrime Loss Valuations © 2011 CCH. All Rights Reserved. 4025 W. Peterson Ave. Chicago, IL 60646-6085.

Forensic and Investigative Accounting Chapter 16 Cybercrime Loss Valuations © 2011 CCH. All Rights Reserved W. Peterson Ave. Chicago, IL
PW SHRM Law Summit Presentation Presented by HR 3D/Solutions 10/5/12 11  3 HR3D/Solutions.

PW SHRM Law Summit Presentation Presented by HR 3D/Solutions 10/5/12 11  3 HR3D/Solutions.
Week 12 – Monday.  What did we talk about last time?  Security policies  Physical security  Lock picking.

Week 12 – Monday.  What did we talk about last time?  Security policies  Physical security  Lock picking.
Research Findings Aviation Safety Inspector Study February/March 2014 1.

Research Findings Aviation Safety Inspector Study February/March
Moving from Analysis to Design

Moving from Analysis to Design
A Look at the 2004 CSI/FBI Computer Crime and Security Survey Robert Richardson Editorial Director Computer Security Institute How to Use Statistics in.

A Look at the 2004 CSI/FBI Computer Crime and Security Survey Robert Richardson Editorial Director Computer Security Institute How to Use Statistics in.
(ISC) 2 2015 Global Information Security Workforce Study (GISWS) Results U.S. Federal Government.

(ISC) Global Information Security Workforce Study (GISWS) Results U.S. Federal Government.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Introduction Security is a major networking concern. 90% of the respondents to the 2004 Computer Security Institute/FBI Computer Crime and Security Survey.

Introduction Security is a major networking concern. 90% of the respondents to the 2004 Computer Security Institute/FBI Computer Crime and Security Survey.
©2003 Prentice Hall Business Publishing, Auditing and Assurance Services 9/e, Arens/Elder/Beasley 8 - 1 Audit Planning and Analytical Procedures Chapter.

©2003 Prentice Hall Business Publishing, Auditing and Assurance Services 9/e, Arens/Elder/Beasley Audit Planning and Analytical Procedures Chapter.
Computer Crimes and Abuses1 By: Saad Shwaileh. Computer Crimes and Abuses2 Outline Introduction. Computer crime and computer Abuse ? Types of Computer.

Computer Crimes and Abuses1 By: Saad Shwaileh. Computer Crimes and Abuses2 Outline Introduction. Computer crime and computer Abuse ? Types of Computer.
Auditing II Unit 1 : Audit Procedures Unit 2: Audit of Limited Companies Unit 3: Audit of Government Companies.

Auditing II Unit 1 : Audit Procedures Unit 2: Audit of Limited Companies Unit 3: Audit of Government Companies.
FISCAL POSITION 2009-2010 This coming year’s financial conditions, including rising costs, a down economy, and a troublesome State budget situation have.

FISCAL POSITION This coming year’s financial conditions, including rising costs, a down economy, and a troublesome State budget situation have.
RKM / BIA 2011 Business Outlook Survey (1 of 8) Research Design:  Systematic in-depth phone interviews with:  302 businesses with at least one location.

RKM / BIA 2011 Business Outlook Survey (1 of 8) Research Design:  Systematic in-depth phone interviews with:  302 businesses with at least one location.
1 EventView 2009: Financial Services. 2 Overview EventView Background Status Key Performance Indicators Summary Trends Budget ROI Measurement Green Event-to-Experience.

1 EventView 2009: Financial Services. 2 Overview EventView Background Status Key Performance Indicators Summary Trends Budget ROI Measurement Green Event-to-Experience.

Similar presentations

Ads by Google