A recently released survey by Kaspersky Labs has highlighted the biggest challenges CISOs face when trying to secure their organisation.
The – What it takes to be a CISO: Success and leadership in corporate IT Security survey shows that 84% of the CISOs questioned believe that having a lack of influence at board level is the biggest hurdle to protect their organisation.
Proving to a board of directors the need for and the financial benefits of implementing often expensive cybersecurity measures is difficult, especially when those at the top demand to see a return of investment on the expense.
As more and more businesses embark on their digital journeys the complexity of mobility and cloud infrastructures is a major headache for CISO. With the continued rise in cyber attacks it is a struggle for them to stay ahead of the latest threats.
With cybercriminals constantly coming up with new attack strategies and as businesses increasingly do their dealings online many organisations are being overwhelmed as they try to keep up. CISOs are at the frontline of this and are expected to ensure a business’s security often with limited resources and budgets.
Managing and securing sensitive and personal data was listed as the second biggest challenge CISOs face and with the introduction of new legislation such as GDPR now in force the pressure is on to get it right.
The Kaspersky survey revealed that 29% of questioned CISOs see the insider threat as the biggest risk to their organisations.
The Insider threat is incredibly difficult to defend against, namely due to its nature. Often disgruntled employees may seek vengeance on the business or simply want to cause mischief. Then there are those employees who create security breaches by accidentally clicking on something they shouldn’t.
“I think the link between insider / human threat and maintaining a well patched/configured network (inside and out) is often missed. Staff will behave badly (either intentionally or unwittingly) at some point so maintaining your network mitigates this threat by limiting the damage (e.g. when someone is phished). You’re 100% vulnerable to insider threats. I can guarantee that the insider threat will hurt you at some point. However, looking after your basic cyber hygiene, will limit the damage.” says David Carroll- CEO at XQ Cyber.
Financially motivated criminal gangs are perceived as the biggest threats to organisations with 40% of those questioned putting them top of the lists. With cybercrime as a service, gangs no longer need to be technical whizzes but can instead purchase the likes of malware and botnets on the dark web.
CyberScore™ is able to quickly and effectively provide oversight of a network regardless of the scale and regardless of location.
Tools like CyberScore™ can help by:
One big feature of CyberScore™ is peer rating, which shows you how you score in relation to your peers allowing you to see how well you’re security is performing.
The challenges faced by CISOs may seem daunting but by using services such as CyberScore™ there is a way to reduce the strain, get buy-in and reduce the cyber risks.
XQ Cyber also offers a range of incident response and consultancy services such as Penetration Testing, Cyber Posture Assessments and Incident Response preparedness and testing.