Increased focus does mean greater interest from board.
More than two-thirds of security professionals feel stories of CISOs being held personally liable for cybersecurity incidents has negatively affected their opinion of the role.
According to research from BlackFog 70 percent felt this affected their perception of the CISO role, while 34 percent believed that the trend of individuals being prosecuted following a cyber-attack was a ‘no-win’ situation for security leaders.
However, 47 percent of UK respondents say the trend of cybersecurity leaders facing increased scrutiny and the potential of personal liability has made senior management take cybersecurity more seriously.
Dr. Darren Williams, CEO and Founder of BlackFog, said: “The role of the CISO is all about managing risk for the organization but, as regulations tighten, security leaders increasingly need to consider their own personal risk.
“High profile instances of individuals being charged will no doubt add to the pressures they feel but could also be a catalyst for Boards to support their leaders. Improvements to governance, clear lines of reporting and incident response procedures are vital, but this must be supported by allocated resources so that security leaders can implement the security measures they need.”
Written by
Dan Raywood
Senior Editor
SC Media UK
Dan Raywood is a B2B journalist with more than 20 years of experience, including covering cybersecurity for the past 16 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Conference, BSides Scotland, Steelcon and ESET Security Days.
Outside work, Dan enjoys supporting Tottenham Hotspur, managing mischievous cats, and sampling craft beers.
