In the second half of 2022, we again ran the Trend Micro Cyber Risk Index (CRI) to gauge the shifts in how organizations viewed their cyber risk. We included North America, Europe, Asia-Pacific, and Latin/South America, giving us a truly global view of the cyber risk organizations are dealing with today. For the first time ever, the CRI moved into the moderate range with a score of +0.01.
The CRI is a collaborative effort between Trend Micro and the Ponemon Institute to survey respondents. In the 2H’2022, we surveyed over 3,700 businesses across the four regions of many sizes and industries. The CRI looks to identify the cyber risk level organizations have based on two areas:
- Their ability to prepare for cyber-attacks targeting them (cyber preparedness index – CPI)
- The current assessment of the threats targeting them (cyber threat index – CTI)
These two are used to calculate the overall cyber risk of an organization based on a -10 to +10 scale, where negative results represent a higher risk level. Effectively we calculate the CRI by subtracting the CTI from the CPI (CRI = CPI – CTI).