CYBERSECURITYASSESSMENT3Take the thinktum Cybersecurity Assessment! 1 / 20Does your organization have a wireless network, or do employees or customers access your internal systems from remote locations? Yes No Unsure 2 / 20Does anyone in your organization take company-owned mobile devices (e.g., laptops, smartphones and USB drives) with them, either home or when travelling? Yes No Unsure 3 / 20Does your organization use Cloud-based software or storage? Yes No Unsure 4 / 20Does your organization have a “bring your own device” (BYOD) policy that allows employees to use personal devices for business use or on a company network? Yes No Unsure 5 / 20Are any employees allowed access to administrative privileges on your network or computers? Yes No Unsure 6 / 20Does your organization have critical operational systems connected to a public network? Yes No Unsure 7 / 20Does anyone in your organization use computers to access bank accounts or initiate money transfers? Yes No Unsure 8 / 20Does your organization store sensitive information (e.g., financial reports, trade secrets, intellectual property and product designs) that could potentially compromise your organization if stolen? Yes No Unsure 9 / 20Does your organization digitally store the personally identifiable information (PII) of employees or customers? This can include government-issued ID numbers and financial information. Yes No Unsure 10 / 20Is your organization part of a supply chain, or do you have supply chain partners? Yes No Unsure 11 / 20Does your organization conduct business in foreign countries, either physically or online? Yes No Unsure 12 / 20Has your organization ever failed to enforce policies around the acceptable use of computers, email, the Internet, etc.? Yes No Unsure 13 / 20Can the general public access your organization’s building without the use of an ID card? Yes No Unsure 14 / 20Is network security training for employees optional at your organization? Yes No Unsure 15 / 20Can employees use their computers or company-issued devices indefinitely without updating passwords? Yes No Unsure 16 / 20Has your IT department ever failed to install antivirus software or perform regular vulnerability checks? Yes No Unsure 17 / 20Can employees dispose of sensitive information in unsecured bins? Yes No Unsure 18 / 20Would your organization lose critical information in the event of a system failure or other network disaster? Yes No Unsure 19 / 20Can employees easily see what co-workers are doing on their computers? Yes No Unsure 20 / 20Has your organization neglected to review its data security policies and procedures in the last year? Yes No Unsure Your score is