Cyber attacks are on the rise, and  nearly 40 per cent agree that their organisation’s CEO is a ‘weak link’ in their cyber security operation.

Making cyber security a priority should start from the top, yet this isn’t always the case: a new survey from Mimecast Limited shows that 20 per cent of respondents said their C-level executive sent sensitive data in response to a phishing attack.

What’s more. 31 per cent of C-level employees are likely to have accidentally sent sensitive data to the wrong person in the last year compared to just 22 per cent of general employees.

A worrying 49 per cent admitted that their management and finance teams aren’t knowledgeable enough to identify and stop an impersonation attempt.

Organisations need a new strategy

Peter Bauer, chief executive officer of Mimecast says that email-based attacks are constantly evolving and organisations need a resilience strategy that goes beyond a defence-only approach,

‘This is more than just an ‘IT problem’. It requires an organisation-wide effort that brings together many stakeholders, puts the right security solutions in place and empowers employees – from the C-suite to the reception desk – to be the last line of defence.’

Mimecast conducted the research with Vanson Bourne on the state of organisations’ cyber security, their expectations and needs and what attacks they’ve seen increase.

Findings within the report are based on responses received from 800 IT decision makers and C-level executives globally and reveals attitudes, behaviours, confidence and preparedness levels of security professionals – and the C-suite – when it comes to dealing with these threats.