Skip to main content

Cybersecurity Leader and Function Benchmarking FY22

The Manufacturers Alliance InfoSec community shared the structure of their cybersecurity departments in February 2022.

  • A MAJORITY HAVE A DESIGNATED HEAD OF CYBERSECURITY – 85% of companies have someone specifically designated as head of the company’s cybersecurity program other than it being also part of the head of IT's role.
  • BACHELOR'S DEGREE IS THE MOST COMMON LEVEL OF EDUCATION – 76% of companies either required the CISO or person responsible for cybersecurity to have a bachelor’s degree, or that person had attained one, and 43% also require CISSP certification.
  • MOST HAVE TEAMS OF 10 OR FEWER FTEs – 76% of companies have a total of 10 or fewer full time equivalent cybersecurity personnel under the direct or indirect control of the IT department.
  • NEARLY 2/3 OF CISOs PARTICIPATE IN DISCLOSURE COMMITTEES – 58% of CISOs or persons responsible for cybersecurity participate in disclosure committee meetings, and 46% do so on a quarterly basis.

Are You a Member?

There is additional content for members only. If you are a member, login to access. Not a member? Learn more.