The Financial Services Information Sharing & Analysis Center released the industry group’s first-ever survey on cybersecurity trends according to top financial Chief Information Security Officers (CISOs). The survey showed that 39 percent of chief information security officers report directly to the chief information officer, followed by 14 percent who said they answer to the chief risk officer.

The survey also showed that CISOs consider the most critical defense against cyberattacks to be employee training, according to 35 percent of those surveyed, ahead of network defense and infrastructure upgrades (25 percent) and breach prevention (17 percent). Protective measures on a firm’s computer system can still fail if a worker clicks on a link or downloads an email attachment carrying malicious code.

Read more in Bloomberg.