Cyber security longitudinal survey

Purpose

The Cyber Security Longitudinal Survey (CSLS) aims to provide a comprehensive understanding of cyber security policies and processes within medium and large businesses and high-income charities. This research is designed to explore the links over time between these policies and processes and the likelihood and impact of a cyber incident. The survey’s primary objective is to help improve UK cyber defences by identifying key factors that influence an organization’s ability to prevent, respond to, and recover from a cyber incident.

Effects on Industry

The CSLS has significant implications for medium and large businesses, high-income charities, and the broader UK economy. By shedding light on effective cyber security practices, the survey can inform policy decisions and guide industry-wide efforts to enhance cyber resilience. As a result, organizations can expect to see improved awareness and adoption of best practices, leading to enhanced security postures and reduced risks associated with cyber incidents. Furthermore, the insights gained from this research can also benefit consumers, as more secure businesses will be better equipped to protect sensitive data.

Relevant Stakeholders

The CSLS is particularly relevant to:

• Medium and large businesses operating in the UK, which can benefit from improved understanding of effective cyber security practices.
• High-income charities, which often handle sensitive information and require robust security measures.
• Government agencies responsible for cybersecurity policies and initiatives, as this research informs their work to improve UK cyber defences.
• Industry associations and organizations promoting best practices in cybersecurity.

Next Steps

Organizations can take the following steps to comply with or respond to the findings of the CSLS:

• Review and update internal cyber security policies and procedures to align with best practices identified by the survey.
• Implement measures to enhance incident response and recovery capabilities.
• Engage with industry peers and government agencies to share knowledge and collaborate on cybersecurity initiatives.
• Consider participating in future waves of fieldwork for the CSLS or similar research projects.

Any Other Relevant Information

The CSLS is an ongoing project, with multiple waves of fieldwork conducted between 2021 and 2024. The survey’s findings have informed government policies and initiatives aimed at improving UK cyber defences. Additionally, this research complements other important surveys, such as the annual Cyber Security Breaches Survey, which focuses on broader cybersecurity behaviors across the UK economy. By tracking changes in cyber security practices over time, the CSLS provides valuable insights for policymakers, industry leaders, and organizations seeking to enhance their cybersecurity postures.