You can always press Enter⏎ to continue
Cybersecurity Confidence Index

Cybersecurity Confidence Index

Harbor developed the Cybersecurity Confidence Index (CCI) self-assessment tool as method for organizations to consider cybersecurity.  The goal of the CCI is to allow you to assess confidence in your organization's ability to; identify digital assets, protect those assets, detect events that cause harm to the assets/business, and effectively respond/recover from an event.  This qualitative assessment will provide insight into your organization's ability to ensure the confidentiality, integrity and availability of data and systems.
  • 1
    What is your level of confidence that your organization has identified all relevant assets, processes, people and industry requirements as it relates to cybersecurity?
    1 of 4
    Press
    Enter
  • 2
    Press
    Enter
  • 3
    What level of confidence do you have that your organization is protecting your digital assets in a manner that is commiserate to the threats you face?
    1 of 5
    Press
    Enter
  • 4
    Press
    Enter
  • 5
    What level of confidence do you have that your organization has the proper training, staff and tools to be able to detect events that impact the security of your assets?
    1 of 3
    Press
    Enter
  • 6
    Press
    Enter
  • 7
    What level of confidence do you have that your organization can respond to a cyber-related event in a manner that limits damage to your business or reputation?
    1 of 3
    Press
    Enter
  • 8
    Press
    Enter
  • 9
    What is your level of confidence that your organization will successfully recover from a cyber-event, protecting the overall well-being of the business?
    1 of 2
    Press
    Enter
  • 10
    Press
    Enter
  • 11
    Press
    Enter
  • 12
    Used in logic.
    Press
    Enter
  • 13
    Used in logic.
    Press
    Enter
  • 14
    Used in logic.
    Press
    Enter
  • 15
    Used in logic.
    Press
    Enter
  • 16
    Conditional field that autopopulates based on CCI Average
    Press
    Enter
  • 17

    Overall Confidence Level: LITTLE TO NO CONFIDENCE

    Although this report is not a quantitative assessment of the controls, processes, or policies your organization has in place to mitigate cyber-threats, it does provide a way for you to gauge the confidence you have in your organization's ability to protect sensitive data and critical assets. The previous questions are a representative example of what areas security professionals consider when determining an organization's overall cybersecurity posture.

    Little to no confidence could mean you have severe gaps in your ability to protect the critical systems and assets within your organization. With such a low level of confidence, you must begin a process of looking at each area within your organization as it relates to cybersecurity.

    Simply put....you MUST address these gaps...and sooner rather than later. This exercise was not an attempt to create fear, uncertainty, and doubt, but to allow you to measure your "gut." If your gut is saying you have a problem, then you likely do have a problem.

    Harbor would recommend you contact a security professional to perform a risk assessment to understand where you have gaps in your security program....with an ultimate goal of drastically improving your overall security posture.

    Identify CCI Level: {identifyAverage}

    Your level of confidence that your organization has identified all relevant assets, processes, people, and industry requirements as it relates to cybersecurity.

    Protect CCI Level: {protectAverage}

    Your level of confidence that your organization is protecting your digital assets proportional to the threats you face.

    Detect CCI Level: {detectAverage}

    Your level of confidence that your organization has the proper training, staff, and tools to be able to detect events that impact the security of your assets.

    Respond CCI Level: {respondAverage}

    Your level of confidence that your organization can respond to a cyber-related event in a manner that limits damage to your business or reputation.

    Recover CCI Level: {recoverAverage}

    Your level of confidence that your organization will successfully recover from a cyber-event, protecting the overall well-being of the business.

    Confidence Tiers

    Average Score Confidence Level
    CCI of < 1 Little to No Confidence
    CCI of 1 - 2 Slight Confidence
    CCI of 2 - 3 Average Confidence
    CCI of 3 High Confidence
    Press
    Enter
  • 18

    Overall Confidence Level: SLIGHT CONFIDENCE

    Although this report is not a quantitative assessment of the controls, processes, or policies your organization has in place to mitigate cyber-threats, it does provide a way for you to gauge the confidence you have in your organization's ability to protect sensitive data and critical assets. The previous questions are a representative example of what areas security professionals consider when determining an organization's overall cybersecurity posture.

    Your CCI score indicates you have a slight level of confidence your organization's ability to protect systems and assets. But, the organization's overall security program likely has numerous gaps that require attention. In other words, your security program must align with the current cyber-threats facing all businesses....regardless of industry. Review the scores in each area (see below) and begin the process with those areas that you lack confidence in most.

    This exercise was not an attempt to create fear, uncertainty, and doubt, but to allow you to measure your "gut." If your gut is saying you have a problem, then you likely do have a problem.

    Harbor would recommend you contact a security professional to perform a risk assessment to understand where you have gaps in your security program....with an ultimate goal of drastically improving your overall security posture.

    Identify CCI Level: {identifyAverage}

    Your level of confidence that your organization has identified all relevant assets, processes, people, and industry requirements as it relates to cybersecurity.

    Protect CCI Level: {protectAverage}

    Your level of confidence that your organization is protecting your digital assets proportional to the threats you face.

    Detect CCI Level: {detectAverage}

    Your level of confidence that your organization has the proper training, staff, and tools to be able to detect events that impact the security of your assets.

    Respond CCI Level: {respondAverage}

    Your level of confidence that your organization can respond to a cyber-related event in a manner that limits damage to your business or reputation.

    Recover CCI Level: {recoverAverage}

    Your level of confidence that your organization will successfully recover from a cyber-event, protecting the overall well-being of the business.

    Confidence Tiers

    Average Score Confidence Level
    CCI of < 1 Little to No Confidence
    CCI of 1 - 2 Slight Confidence
    CCI of 2 - 3 Average Confidence
    CCI of 3 High Confidence
    Press
    Enter
  • 19

    Overall Confidence Level: AVERAGE CONFIDENCE

    Although this report is not a quantitative assessment of the controls, processes, or policies your organization has in place to mitigate cyber-threats, it does provide a way for you to gauge the confidence you have in your organization's ability to protect sensitive data and critical assets. The previous questions are a representative example of what areas security professionals consider when determining an organization's overall cybersecurity posture.

    A CCI score of "Average" puts your confidence level in line with most of Harbor Technology Group's clients when they first contact us (we perform a CCI at the start of projects). This level of confidence is generally indicative of an organization that has focused on specific areas of cybersecurity but doesn't understand the full scope of a security program.

    What Harbor finds is our client's confidence is mostly warranted, but where there are gaps, they are dangerous. But, the organization's overall security program likely has numerous weaknesses that require attention. In other words, a security program must align with the current cyber-threats facing all businesses....regardless of industry. Review the scores in each area (see below) and begin the process with those areas that you lack confidence in most.

    This exercise was not an attempt to create fear, uncertainty, and doubt, but to allow you to measure your "gut." If your gut is saying you have a problem, then you likely do have a problem.

    Harbor would recommend you contact a security professional to perform a risk assessment to validate what you do well and more importantly understand where you have gaps in your security program. The ultimate goal is to improve your overall security posture.

    Identify CCI Level: {identifyAverage}

    Your level of confidence that your organization has identified all relevant assets, processes, people, and industry requirements as it relates to cybersecurity.

    Protect CCI Level: {protectAverage}

    Your level of confidence that your organization is protecting your digital assets proportional to the threats you face.

    Detect CCI Level: {detectAverage}

    Your level of confidence that your organization has the proper training, staff, and tools to be able to detect events that impact the security of your assets.

    Respond CCI Level: {respondAverage}

    Your level of confidence that your organization can respond to a cyber-related event in a manner that limits damage to your business or reputation.

    Recover CCI Level: {recoverAverage}

    Your level of confidence that your organization will successfully recover from a cyber-event, protecting the overall well-being of the business.

    Confidence Tiers

    Average Score Confidence Level
    CCI of < 1 Little to No Confidence
    CCI of 1 - 2 Slight Confidence
    CCI of 2 - 3 Average Confidence
    CCI of 3 High Confidence
    Press
    Enter
  • 20

    Overall Confidence Level: HIGH CONFIDENCE

    Although this report is not a quantitative assessment of the controls, processes, or policies your organization has in place to mitigate cyber-threats, it does provide a way for you to gauge the confidence you have in your organization's ability to protect sensitive data and critical assets. The previous questions are a representative example of what areas security professionals consider when determining an organization's overall cybersecurity posture.

    You CCI indicates you have a high level of confidence in your security program. This level of confidence is generally indicative of an organization that has focused on all areas of cybersecurity and is continually measuring, adapting, and improving their overall security program. And, is most certainly a higher level of confidence than most organizations.

    Harbor finds that clients who believe they have everything "sorted" are generally doing many (if not all) the right things in areas that are strictly IT or tool-based, but may lack the processes necessary to be prepared in the event of a cyber-event. Additionally, in most cases, the tools and controls are not proportional to the risks they face. The linkage between security and risk is critical for organizations that want to be truly secure. In other words, a security program must be in lockstep the current cyber-threats/risks facing all businesses....regardless of industry.

    Harbor would recommend you contact a security professional to perform a risk assessment to validate the confidence you have in your security program. There is little doubt that even if your high level of confidence is verified, there will be areas for improvement. Cybersecurity is a moving target, and being able to adapt to the changing cyber-landscape is what makes a truly successful security program.

    Identify CCI Level: {identifyAverage}

    Your level of confidence that your organization has identified all relevant assets, processes, people, and industry requirements as it relates to cybersecurity.

    Protect CCI Level: {protectAverage}

    Your level of confidence that your organization is protecting your digital assets proportional to the threats you face.

    Detect CCI Level: {detectAverage}

    Your level of confidence that your organization has the proper training, staff, and tools to be able to detect events that impact the security of your assets.

    Respond CCI Level: {respondAverage}

    Your level of confidence that your organization can respond to a cyber-related event in a manner that limits damage to your business or reputation.

    Recover CCI Level: {recoverAverage}

    Your level of confidence that your organization will successfully recover from a cyber-event, protecting the overall well-being of the business.

    Confidence Tiers

    Average Score Confidence Level
    CCI of < 1 Little to No Confidence
    CCI of 1 - 2 Slight Confidence
    CCI of 2 - 3 Average Confidence
    CCI of 3 High Confidence
    Press
    Enter
  • 21
    Press
    Enter
  • 22
    Please enter your contact information so we can send you a copy of the report.
    Press
    Enter
  • 23
    Press
    Enter
  • 24
    Press
    Enter
  • Should be Empty:
Question Label
1 of 24See AllGo Back
close