New Research Finds C-Suite âInfosec Averseâ>
Tech Native
As technology continues to become more essential for running businesses in nearly every field, itâs no surprise that C-level tech experts are playing a more important role However, CIOs, CSOs, and CISOs donât always work in perfect harmony with other C-level counterparts, and recent data from Bitdefenderâs âSmall Gains, Big Winsâ shows that security-minded C-level executives have some significant concerns, particularly when it comes to other executives. When asked which part of their organizationsâ demographics were more infosec-averse, 41 percent laid blame at their fellow C-suite counterparts. In fact, management as a whole, from C-level executives down to junior department heads, were cited as the most likely to flaunt security risks and leave data vulnerable. Day-to-day knowledge workers, who are often charged with being most likely to cause security problems, were cited by only 25 percent of respondents. When asked what was their greatest concern regarding security, 26 percent cited the possibility of fines or other sanctions. In contrast, 42 percent of infosec executives instead cited a potential loss of stakeholder and customer trust as the most concerning potential repercussion. In third place was a loss of employee trust, noted by 16 percent of respondents. This number varied by age, with older infosec executives being more likely to cite stakeholder and customer trust as a greater concern, while youngers executives were more concerned about fines. 58 percent responded that they had lost sleep worrying about potential cyberattacks, a figure that unveils the kind of stress these security C-level executives feel on an ongoing basis. Some expressed sentiments that show a lack of clarity on the job; 20 percent of those who responded canât positively say whether their end-point security solutions are up to date. Bitdefender asked about how important speediness was in various security areas, and sandboxing, which came in last place, was still cited by 68 percent of those surveyed. At the top was endpoint security at 76 percent, followed closely at 74 percent by both endpoint detection and response and anti-exploit and memory protection. Application control, patch management, and automated behavioral analysis were cited by similar numbers: 73 percent, 72 percent, and 69 percent, respectively. The main takeaway, however, was clear: Speedy responses are essential for mitigating breaches and minimizing harm. Fortunately, infosec executives seem more optimistic about their ability to become aware of new large-scale public threats in a prompt manner. In total, 57 percent of those who responded believe their business would become aware of potential threats within 24 hours, while a 32 percent believe theyâd become aware within 25 to 48 hours. A further eight percent believe theyâd be aware of such threats between three days and one week, while only three percent believe theyâd take between two and four weeks.
Link: https://www.technative.io/new-research-finds-c-suite-infosec-averse/