{
  "docId": "019dd923-5de0-76bd-a16a-5ae74afc8cbc",
  "docSlug": "70414404d6257472",
  "documentTitle": "IIF/McKinsey Cyber Resilience Survey",
  "authorId": "McKinsey",
  "authorName": "McKinsey",
  "documentKindSlug": "consulting-deck",
  "documentKindLabel": "Consulting deck",
  "sourceTypeSlug": "strategy_consulting",
  "sourceTypeLabel": "Strategy consulting",
  "presentationDate": null,
  "orientation": "landscape",
  "aspectRatio": 1.294,
  "pageNumber": 16,
  "pageCount": 24,
  "prevPage": 15,
  "nextPage": 17,
  "slideType": "key_takeaways",
  "function": "analyze_data",
  "density": "dense",
  "nDataPoints": 14,
  "notes": "The chart uses a mirrored bar chart format to compare underspending and overspending across seven cybersecurity functions.",
  "elementsJson": [
    "bar_chart_horizontal",
    "callout_box"
  ],
  "metadataConfidence": 1,
  "imagePath": null,
  "slideHref": "/slides/019dd923-5de0-76bd-a16a-5ae74afc8cbc/16",
  "deckHref": "/decks/019dd923-5de0-76bd-a16a-5ae74afc8cbc",
  "deckJsonHref": "/decks/019dd923-5de0-76bd-a16a-5ae74afc8cbc.json",
  "deckAnchorHref": "/decks/019dd923-5de0-76bd-a16a-5ae74afc8cbc#slide-16",
  "components": [
    {
      "bbox": {
        "x": 0.58,
        "y": 515
      },
      "kind": "callout",
      "text": "38% of companies said they are overspending on the protect function; this could stem from a past focus on shoring up the network and infrastructure. However, companies may not be paying enough attention to other functions; recovery and supply chain are particular concerns",
      "attrs": null,
      "subkind": "primary",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "e67b512a-7ea2-411d-8218-1135b27a9afb",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": null,
      "kind": "callout",
      "text": "38% of companies said they are overspending on the protect function; this could stem from a past focus on shoring up the network and infrastructure. However, companies may not be paying enough attention to other functions; recovery and supply chain are particular concerns.",
      "attrs": null,
      "subkind": null,
      "toolName": "Visual emphasis",
      "toolSlug": "visual-emphasis",
      "confidence": null,
      "componentId": "019dd952-2e35-763d-8384-5c37f94b8e6e",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "x": 0.197,
        "y": 350
      },
      "kind": "chart",
      "text": "Cybersecurity spending by function",
      "attrs": null,
      "subkind": "bar-horizontal",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "7dd67862-4894-400d-b917-a6f362a515fc",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": null,
      "kind": "metric",
      "text": "Percentage of respondents: 38%",
      "attrs": null,
      "subkind": "primary",
      "toolName": "Quantification",
      "toolSlug": "quantification",
      "confidence": null,
      "componentId": "019dd952-2e35-763d-8384-61e13cbbb28d",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "x": 0.197,
        "y": 63
      },
      "kind": "paragraph",
      "text": "Costs and FTEs",
      "attrs": null,
      "subkind": "paragraph",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "275fb467-b095-4eee-aedb-9b3043e3fb87",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "x": 0.197,
        "y": 950
      },
      "kind": "paragraph",
      "text": "IIF/McKinsey Cyber Resilience Survey",
      "attrs": null,
      "subkind": "paragraph",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "d434af74-14b7-4237-8373-5f21b9e949e1",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "x": 0.343,
        "y": 0.095
      },
      "kind": "title",
      "text": "The protect function is getting the most spending; other functions need more",
      "attrs": null,
      "subkind": "headline",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "83082fc9-5485-41cf-8db3-c8da96d68594",
      "frameworkName": null,
      "frameworkSlug": null
    }
  ],
  "metrics": [],
  "tools": [],
  "frameworks": [],
  "arcBeats": [
    {
      "to": 16,
      "from": 13,
      "beatId": "01203fc7-71ce-418e-a939-993790a1853a",
      "arcName": "The Consultant's Gambit",
      "arcSlug": "consultants-gambit",
      "beatName": "Evidence & Proof",
      "beatSlug": "consultants-gambit-evidence-proof",
      "evidence": "The document provides data and insights to support the need for improvement",
      "position": 2,
      "confidence": 0.8,
      "parentBeatName": "Evidence",
      "parentBeatSlug": "evidence"
    }
  ],
  "loops": [
    {
      "to": 16,
      "from": 15,
      "name": "Cost Of Inaction",
      "slug": "27-cost-of-inaction",
      "bestFor": "Urgent budget requests, compliance, risk mitigation",
      "matchId": "03fd65ca-e78c-4454-877a-20965e9f9783",
      "evidence": "The document shows that more than half of the firms acknowledged underspending on cybersecurity",
      "position": 0,
      "objective": "Highlight the consequences of underspending on cybersecurity",
      "structure": "The Status Quo -> The Hidden Costs Accumulating -> The Future State of Inaction -> The Tipping Point",
      "confidence": 0.7,
      "description": "Quantify what happens if the audience does nothing"
    }
  ],
  "imagePathAlt": null,
  "thumbSrc": null,
  "thumbSrcAlt": null,
  "locked": true
}