UAE organisations are being urged to ensure they have a comprehensive and accurate view of their cyber risks, after a new report suggested many are failing to consistently implement threat intelligence and cyber monitoring.
The KPMG 2015 UAE Cyber Security Survey, which focussed on UAE firms' ability to respond to cyber-attacks, revealed a discord between the threat of attack and the readiness of organisations.
A third of the respondents questioned in the survey said they had been hit by a cyber-attack in the past 12 months, which took anywhere from two weeks to a month to recover.
Of those that had suffered an attack, half said they were unaware that they were being targeted by hackers. As a result, only 50% of respondents said they had cyber-attack contingency arrangements in place.
Nitin Khanapurkar, partner, KPMG Lower Gulf, explained that the cyber threat facing UAE organisations is showing no signs of diminishing.
He said: "The UAE is on the list of the top 10 destinations targeted by cyber criminals and it comes as no surprise that cyber threats have been growing across key sectors like financial services, oil & gas, technology, government, retail, construction and health care."
KPMG's report indicated that UAE businesses are not fully prepared for this growing risk, with an evident lack of knowledge about who, where and why they are likely to be targeted.
The concerning findings have led KPMG into creating a "cyber incident response" that offers actionable results, rules of evidence, with technical security analysis and testing to help organisations stay prepared to deal with a cyber-attack.
Khanapurkar pointed out that one of the most common causes of a failed response is lack of "adequate preparation".