CISOs adapt to changing threats
Alex Sidorov | 08.04.2019
Wendy Nather
Chief information security officers (CISOs) are modifying and expanding their security strategies to combat new threats, according to the recent Cisco 2019 CISO Benchmark Study, InformationWeek reports. New approaches and tactics are designed to prevent incidents and reduce financial losses.
Nearly half of respondents (47%) said they focus security spending on bottom-line goals. “They’re not just collecting tools; they’re delivering tangible results,” said Wendy Nather, director of CISO advisory services at Cisco Duo Security. “The vast majority of organizations (94%) conduct incident response drills at least annually, and 61% conduct them at least every six months. These drills help enterprise staff gain the skills they need to address emerging security threats.”
Solving the main problems
Collaboration is the most effective security strategy, the study found. “The teams that are most collaborative lose the least money,” Nather explained. Indeed, collaboration and breaking down silos have a measurable financial impact: 95% of security professionals report that their network and information security teams are very or extremely collaborative.
The large financial impact of security ecuador mobile database continues to be a concern for CISOs. Fifty-nine percent of respondents reported that their organizations suffered losses of up to $100,000 from the most serious breaches, the lowest cost reported in the study. Forty-five percent of respondents suffered financial losses of more than $500,000. At least 50% suffered losses of less than that. Worryingly, 8% of CISOs say their organizations suffered more than $5 million in losses from the most serious breaches last year. On the other hand, 93% of CISOs say they have increasing confidence in the protection and security provided by the cloud.
The Changing Role of the CISO
Today, CISOs are more involved in “contract risk management,” negotiating security issues and negotiating with providers and vendors. “More CISOs are finding it convenient to use cloud-based security services. Ninety-three percent of respondents agree that it makes their operations more efficient and effective. We expect this trend to continue,” Nather said.