Elevating Security Awareness

Increasing the Relevance and Scalability of End-User Education

Topics: Information Technology, Information Security, IT Governance, Data Management

Education Breaches Carry High Costs

CISOs, response plans reduce indirect breach costs

The average cost per compromised record is higher in education breaches than the average in other industries. Across global industries, only health care had a higher cost per record in breaches. Twothirds of breach costs are associated with indirect expenses like victim notification, reorganization, and business interruption— losses that are rarely covered by insurance. Only one-third of average costs are direct crisis services, legal penalties, and government fines.

Across industries, breaches were more expensive if they involved lost or stolen devices, third-party data, or if the breached organization engaged with consultants. Organizations reported lower per capita expenses when they had a CISO appointed, a business continuity plan, and an incident response plan in place.

A Question of When, Not If

What’s the Worst That Could Happen?