Jersey Cyber Benchmark

1. About this exercise

0%
Jersey Cyber Benchmark


Thank you for participating in our island cyber risk benchmark. We've designed this very carefully to be as quick and easy as possible, and to provide a useful output for your organisation as well as for the Island. The results of this will help guide our work and priorities to keep you, your organisation, and Jersey's community secure.

Further information:
  1. Download the information leaflet
  2. Printable question set for offline review
  3. Contact JCSC
  4. Cyber Security Awareness Month 2023

Before you start we've put together a brief FAQ. Of course if you don't want to read it right now, feel free to scroll to the bottom of the page and jump in!

Who is carrying out the survey?
Jersey Cyber Security Centre (CERT.JE) is undertaking this exercise in partnership with the Government of Jersey Digital Economy Team, and supported by our delivery partner Soteria.

Why are you doing this?
Cyber threats have never been more severe. We want to understand where our strengths and weaknesses are as a island so we can can prioritise our resources wisely and make sure we are providing the right support. We also want to give policymakers insight into the risk we carry as a jurisdiction to help them develop informed policies.

Who should respond?
All organisations in Jersey can respond. An IT manager, or the person most responsible for your technology will probably find it easiest to answer. Please note, do not enter false data as the return will have to be discarded.

How long it will take to complete?
It should take 10 to 15 minutes if you have the answers to hand. It may take longer if you need to check with someone else. If there is anything you don't know, you can save the survey and come back to it later.

Why should I do this?
Every organisation has cyber risk. The better we can do our job, the better we can support you - and the less you have to worry about cyber, you can focus on the things that matter to you. We will also be offering a series of drop in sessions where you can talk through your cyber security controls with a JCSC cyber expert who will be able to provide advice and support. These will be completely free - as long as you have completed the survey!

Can I have a copy of the questions to review as a team?
Of course. You can download the questions here for offline review. Having considered your answers, you can then enter them into the survey tool.

Is there a briefing I can share with my board, colleagues, or IT supplier?
There is. You can download a copy of the short 2 page briefing note here.

How did you choose the questions?
The questions are carefully mapped to both the NIST cybersecurity framework and CyberEssentials. They cover all NIST and CyberEssentials controls with the fewest questions possible.

Will you provide personalised feedback?
Yes, once the exercise is complete you will be able to request both your own answers and the benchmark results for comparison. We are also offering free 1:1 review sessions with a JCSC expert during Cyber Security Awareness Month. We'll send you a booking link when we receive your completed survey, or you can book directly here.

How will my data be used?
We will use your data statistically to provide aggregated and anonymised results we can share with partners and use to prioritise our work (for example, we will do more work in the areas people most need help with). If you ask us, we will also go through your individual result with you. We'll use your contact details to contact you about this exercise, and if we need to support you with a cyber incident. We will not share your individual results with anyone else. You can find our more in our privacy policy.

Who will have access to my data?
Only team members who are working on the analysis, or supporting you at your request.

Who is the Data Controller?
Jersey Cyber Security Centre, Department for the Economy. JCSC is registered as a data controller under the Data Protection Law.

Will there be any follow-up?
We will review the outcome of the survey and the success of the exercise to learn and improve. We may then contact you with clarification questions or for next year's benchmark, but what you tell us is up to you.

How can I stay up to date with the results of the exercise and with JCSC?
You can sign up for our monthly newsletter here.

Help! I have a question.
Please email hello@cert.je or call 01534 500 050 and one of the team (Matt, James, Paul, Morgan & Steph) will be happy to discuss this with you.

Let's get started!