Closed call for evidence

Survey questions: Cyber security breaches survey user engagement exercise

Published 2 October 2024

You can use the online survey to respond to these questions.

Respondent information  

1.Are you aged 16 or over? (Yes, No – take to end)  

2.Are you answering this survey on behalf of an organisation or group, or an individual? (Individual, Organisation or group).   

3.(If Organisation or group at Q2) Please provide the name of the organisation or group. If you are responding on behalf of a specific team within your organisation, please also provide your team’s name. (Open text)  

4.What sector do you work in (Academia and research, Business and Commercial Sector, Government, including local government and public bodies, Think tanks, Voluntary community and social enterprise, Not applicable – I am responding in a personal capacity, Other (please specify))  

5.May we contact you to discuss your response to this survey? This may be to follow up on any specific points we need to clarify. (Yes/No)  

6.(If Yes at Q5) Please provide a contact name and email address. (Open text) 

Current use of the Cyber Security Breaches Survey 

7.How frequently do you use these statistics and information? (Weekly, Monthly, Quarterly, Annually, Rarely, Never) 

8.Please describe how and why you use these statistics. Please be as specific as possible; for example, if you use the statistics to provide briefing and further analysis to others, it would be helpful to know what the end use is. (Open text)   

9.For each of the following sections/findings from the CSBS 2024, please rate how useful/interesting you find them? (Very useful/interesting, somewhat useful/interesting, neutral, not useful/interesting, not useful/interesting at all). 

  • Organisations’ awareness and attitudes towards cybersecurity 
  • Approaches to cyber resilience, including current strategies and processes
  • Prevalence and impact of breaches and attacks, including the nature, severity, and frequency of cyber breaches and attacks
  • Organisations’ handling of breaches or attacks, including identification, response, reporting, and adaptation to prevent future cases
  • Cyber crimes and the frauds that occur as a result of cyber crime 

Proposed plans for 2026 onwards  

10.Do you believe we should modify cyber security breaches cost questions?  Do you have any concerns or thoughts regarding this modification? What changes, if any, would you propose to the cyber security breaches cost questions? (Yes, modify them; Please provide details - optional / No, keep them as they are; Please provide details - optional /No opinion) 

11.Do you believe we should modify cyber crime cost questions? Do you have any concerns or thoughts regarding this modification? What changes, if any, would you propose to the cyber crime cost questions? (Yes, modify them; Please provide details - optional / No, keep them as they are; Please provide details - optional /No opinion) 

12.Which of the following areas proposed for potential inclusion would you find useful/interesting? (Very useful/interesting, somewhat useful/interesting, neutral, not useful/interesting, not useful/interesting at all). 

  • Follow up questions on supply chain cyber security 
  • Follow up questions on cyber security insurance 
  • New/follow up questions on software cyber security 
  • New questions on AI cyber security 
  • New questions on AI-facilitated cyber crime 
  • New questions on data security 

13.Are there any other topics or questions that are of particular interest and are likely to be relevant for 2026, 2027, and 2028? (Yes: Please provide details - optional /No/ No opinion) 

14.Are you currently conducting/familiar with any research that may conflict with/duplicate this proposal? (Yes: Please provide details - optional /No/ No opinion) 

15.Would you be negatively impacted if the Cyber Security Breaches Survey was discontinued in its current format? (Yes: Please provide details - optional /No/ No opinion)

16.Do you have any general feedback/further comments on the proposal above/proposed changes? (Yes: Please provide details - optional /No/ No opinion) 

Thank you for taking the time to respond. If you are interested in speaking to us about these statistics in future, please email us at cybersurveys@dsit.gov.uk.