The Manufacturers Alliance InfoSec community shared the structure of their cybersecurity departments in February 2022.
- A MAJORITY HAVE A DESIGNATED HEAD OF CYBERSECURITY – 85% of companies have someone specifically designated as head of the company’s cybersecurity program other than it being also part of the head of IT's role.
- BACHELOR'S DEGREE IS THE MOST COMMON LEVEL OF EDUCATION – 76% of companies either required the CISO or person responsible for cybersecurity to have a bachelor’s degree, or that person had attained one, and 43% also require CISSP certification.
- MOST HAVE TEAMS OF 10 OR FEWER FTEs – 76% of companies have a total of 10 or fewer full time equivalent cybersecurity personnel under the direct or indirect control of the IT department.
- NEARLY 2/3 OF CISOs PARTICIPATE IN DISCLOSURE COMMITTEES – 58% of CISOs or persons responsible for cybersecurity participate in disclosure committee meetings, and 46% do so on a quarterly basis.