SYS-CON MEDIA Authors: Liz McMillan, Yeshim Deniz, Elizabeth White, Pat Romanski, William Schmarzo

News Feed Item

FICO and U.S. Chamber of Commerce Release First U.S. Cybersecurity Assessment

Quarterly Assessment of Business Cybersecurity gives businesses a benchmark for assessing their cybersecurity risk; first results show an overall score of 687 out of 850 for U.S. businesses

WASHINGTON, Oct. 11, 2018 /PRNewswire/ -- Seventh Annual Cybersecurity Summit -- The U.S. Chamber of Commerce and FICO today released the first national cybersecurity assessment at the Chamber's Seventh Annual Cybersecurity Summit. The U.S. Chamber's Assessment of Business Cybersecurity (ABC), powered by the FICO® Cyber Risk Score, measures the cybersecurity risk of the entire business community and risk across key sectors. The ABC provides actionable intelligence for businesses, which will help them improve their individual cyber risk profiles and help strengthen the cyber readiness of the nation.

U.S. Chamber of Commerce logo

More information: www.cyber-abc.com

Businesses that obtain their FICO® Cyber Risk Score can use the ABC to compare their cybersecurity risk to organizations of similar size and in the same sector. Over 2,500 small, medium, and large companies in 10 sectors — agriculture and food; business services; construction; energy and utilities; finance and banking; health care; materials and manufacturing; retail and consumer services; media, telecom and technology; and transportation — were scored with the FICO® Cyber Risk Score, an empirical standard for assessing cybersecurity risk. Just like a FICO® Score for credit risk, the range is 300 to 850. A higher score shows stronger security and indicates a lower risk of a cyber threat.

The ABC shows that risk currently varies greatly by industry and size of company. Over time, the ABC will show how security is improving or deteriorating at the national and sector levels.

The first release of the ABC shows that:

  • Large companies are at greater risk than their smaller counterparts. Cybersecurity risk is correlated to both the size of the organization and the complexity of the organization's networks. Larger networks are more difficult to manage and tend to increase the forward-looking odds of a breach incident.
  • The relative risk of industry sectors varies widely. The highest-scoring sector was construction at 764, while the media, telecommunications and technology sector scored lowest at 619 — this difference represents nearly 200% variance in odds of significant cyber incident.
  • The risk performance differentiation between large and small entities is less pronounced in industries with the most sensitive data, such as health care and finance and banking, where companies are subject to specific compliance regimes.

"With the ABC, businesses now have a comparative benchmark for understanding their collective cybersecurity risk," said Christopher D. Roberti, senior vice president for cyber intelligence and security policy, U.S. Chamber of Commerce. "Businesses are on the front line of cybersecurity threats. Their risk impacts our economy's health and our national security. That's why we are pleased to partner with FICO to ensure businesses know their level of security. Organizations can obtain their Cyber Risk Score and use the ABC to measure their risk, know the risk of their sector, and take steps to improve their risk posture."

How It Works

The ABC is an aggregate measure of security risk across small, medium, and large U.S. companies and across 10 sectors. It uses a random sample of these businesses and their FICO® Cyber Risk Score to reflect security performance across the U.S. economy, as well as within specific industry sectors. Results from each of the categories are presented individually. The same results are also combined in a revenue-weighted formula that represents the relative risk a given sector presents to the economy as a whole.

For example, across a random sample of 300 businesses in the construction sector, we assess that the score for small construction companies is 767. Medium companies' average score is 742, and the average score for large companies is 682. These are combined into a revenue-weighted formula, relative to the risk of sector of the entire economy, to produce a risk score for the entire sector of 764.

The FICO® Cyber Risk Score that powers the ABC calculates the probability of an organization suffering a material data breach in the next 12 months.

"This is the first time the cybersecurity strength of the nation's businesses has been measured in this detail," said Doug Clare, vice president for cybersecurity solutions at FICO. "Our analytics measure and monitor billions of cyber risk indicators, and we use machine learning to produce a forward-looking metric for measuring cyber risk. The ABC is a benchmark based on this empirical calculation. The FICO Cyber Risk Score is not a report card — just like the FICO Score, it's an empirical, objective forecast of performance. Individual businesses can use the FICO Cyber Risk Score to compare their own cyber risk against these benchmarks."

Organizations that choose to learn more about their specific security performance can register for a free subscription at cyberscore.fico.com. "Much like individuals can get their FICO® Score to understand how lenders view their creditworthiness, organizations can get their FICO Cyber Risk Score, for free, to gauge their security effectiveness and understand how business partners view their cybersecurity hygiene," Clare said. "In addition to self-assessment, businesses can use the full version of the FICO Cyber Risk Score offering to monitor the security risk of third-party and fourth-party partners and vendors. It's a 360-degree view of your cybersecurity risk exposure."

About the U.S. Chamber of Commerce

The U.S. Chamber of Commerce is the world's largest business federation representing the interests of more than 3 million businesses of all sizes, sectors, and regions, as well as state and local chambers and industry associations. For more information, visit uschamber.com and FreeEnterprise.com, like us on Facebook and follow us on Twitter.

The Chamber has been leading on cybersecurity for years. In 2014, it launched a new comprehensive campaign under the banner Improving Today. Protecting Tomorrow™ to advance cybersecurity policies and legislation while educating businesses of all sizes about cyber threats and how to protect against them.

About FICO

FICO (NYSE: FICO) powers decisions that help people and businesses around the world prosper. Founded in 1956 and based in Silicon Valley, the company is a pioneer in the use of predictive analytics and data science to improve operational decisions. FICO holds more than 185 U.S. and foreign patents on technologies that increase profitability, customer satisfaction and growth for businesses in financial services, telecommunications, health care, retail and many other industries. Using FICO solutions, businesses in more than 100 countries do everything from protecting 2.6 billion payment cards from fraud, to helping people get credit, to ensuring that millions of airplanes and rental cars are in the right place at the right time. Learn more at http://www.fico.com.

Join the conversation at https://twitter.com/fico & http://www.fico.com/en/blogs/

For FICO news and media resources, visit www.fico.com/news.

FICO is a registered trademark of Fair Isaac Corporation in the United States and in other countries.

 

FICO and the U.S. Chamber of Commerce have released the first quarterly Assessment of Business Cybersecurity.

FICO Corporate logo.  (PRNewsFoto/FICO)

Cision View original content to download multimedia:http://www.prnewswire.com/news-releases/fico-and-us-chamber-of-commerce-release-first-us-cybersecurity-assessment-300729374.html

SOURCE FICO; U.S. Chamber of Commerce

More Stories By PR Newswire

Copyright © 2007 PR Newswire. All rights reserved. Republication or redistribution of PRNewswire content is expressly prohibited without the prior written consent of PRNewswire. PRNewswire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
The complexity of managing and delivering the high level of reliability expected of web-based, cloud hosted systems today, and the expectation of Continuous Delivery of new features has led to the evolution of a totally new field of Service Reliability Engineering catered for such systems. Google, who has been a pioneer in this field, calls it Site Reliability Engineering (SRE). While it would be more aptly named Service Reliability Engineering, the name has caught on. The seminal work document...
Inzata is a powerful, revolutionary data analytics platform for integrating, exploring, and analyzing data of any kind, from any source, at massive scale. Powerful AI-assisted Modeling and a patented analytics engine help users quickly load, blend and model raw and unstructured data into powerful enterprise data models, actionable real-time analytics and engaging visualizations. Go beyond spreadsheets and slides and compose a powerful narrative about how your business is performing, and how y...
Atmosera delivers modern cloud services that maximize the advantages of cloud-based infrastructures. Offering private, hybrid, and public cloud solutions, Atmosera works closely with customers to engineer, deploy, and operate cloud architectures with advanced services that deliver strategic business outcomes. Atmosera's expertise simplifies the process of cloud transformation and our 20+ years of experience managing complex IT environments provides our customers with the confidence and trust tha...
Digital Transformation and Disruption, Amazon Style - What You Can Learn. Chris Kocher is a co-founder of Grey Heron, a management and strategic marketing consulting firm. He has 25+ years in both strategic and hands-on operating experience helping executives and investors build revenues and shareholder value. He has consulted with over 130 companies on innovating with new business models, product strategies and monetization. Chris has held management positions at HP and Symantec in addition to ...
CloudEXPO | DevOpsSUMMIT | DXWorldEXPO Silicon Valley 2019 will cover all of these tools, with the most comprehensive program and with 222 rockstar speakers throughout our industry presenting 22 Keynotes and General Sessions, 250 Breakout Sessions along 10 Tracks, as well as our signature Power Panels. Our Expo Floor will bring together the leading global 200 companies throughout the world of Cloud Computing, DevOps, IoT, Smart Cities, FinTech, Digital Transformation, and all they entail. As ...
Wasabi is the hot cloud storage company delivering low-cost, fast, and reliable cloud storage. Wasabi is 80% cheaper and 6x faster than Amazon S3, with 100% data immutability protection and no data egress fees. Created by Carbonite co-founders and cloud storage pioneers David Friend and Jeff Flowers, Wasabi is on a mission to commoditize the storage industry. Wasabi is a privately held company based in Boston, MA. Follow and connect with Wasabi on Twitter, Facebook, Instagram and the Wasabi blog...
Updating DevOps to the latest production data slows down your development cycle. Probably it is due to slow, inefficient conventional data management practices to copy data between different developer and test environment. This problem doesn't scale as teams are adopting faster software release cycles. In this session, Dhiraj Sehgal in Product and Solution at Delphix, will talk about DevOps and cloud-focused strategies to update hundreds of developer and test copies with updates from a master...
Darktrace is the world's leading AI company for cyber security. Created by mathematicians from the University of Cambridge, Darktrace's Enterprise Immune System is the first non-consumer application of machine learning to work at scale, across all network types, from physical, virtualized, and cloud, through to IoT and industrial control systems. Installed as a self-configuring cyber defense platform, Darktrace continuously learns what is ‘normal' for all devices and users, updating its understa...
Most modern computer languages embed a lot of metadata in their application. We show how this goldmine of data from a runtime environment like production or staging can be used to increase profits. Adi conceptualized the Crosscode platform after spending over 25 years working for large enterprise companies like HP, Cisco, IBM, UHG and personally experiencing the challenges that prevent companies from quickly making changes to their technology, due to the complexity of their enterprise. An accomp...
Big Switch's mission is to disrupt the status quo of networking with order of magnitude improvements in network e ciency, intelligence and agility by delivering Next-Generation Data Center Networking. We enable data center transformation and accelerate business velocity by delivering a responsive, automated, and programmable software-dened networking (SDN) fabric-based networking solution. Traditionally, the network has been viewed as the barrier to data center transformation as legacy networkin...
Digital Transformation (DX) is a major focus with the introduction of DXWorldEXPO within the program. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive over the long term. A total of 88% of Fortune 500 companies from a generation ago are now out of business. Only 12% still survive. Similar percentages are found throughout enterprises of all sizes. We are offering early bird savings...
Andrew Keys is Co-Founder of ConsenSys Enterprise. He comes to ConsenSys Enterprise with capital markets, technology and entrepreneurial experience. Previously, he worked for UBS investment bank in equities analysis. Later, he was responsible for the creation and distribution of life settlement products to hedge funds and investment banks. After, he co-founded a revenue cycle management company where he learned about Bitcoin and eventually Ethereum.
Lori MacVittie is a subject matter expert on emerging technology responsible for outbound evangelism across F5's entire product suite. MacVittie has extensive development and technical architecture experience in both high-tech and enterprise organizations, in addition to network and systems administration expertise. Prior to joining F5, MacVittie was an award-winning technology editor at Network Computing Magazine where she evaluated and tested application-focused technologies including app secu...
Every organization is facing their own Digital Transformation as they attempt to stay ahead of the competition, or worse, just keep up. Each new opportunity, whether embracing machine learning, IoT, or a cloud migration, seems to bring new development, deployment, and management models. The results are more diverse and federated computing models than any time in our history. Unfortunately, there is no single deployment model that solves all of your business goals. You need to maintain the fl...
Only Adobe gives everyone - from emerging artists to global brands - everything they need to design and deliver exceptional digital experiences. Adobe Systems Incorporated develops, markets, and supports computer software products and technologies. The Company's products allow users to express and use information across all print and electronic media. The Company's Digital Media segment provides tools and solutions that enable individuals, small and medium businesses and enterprises to cre...