Nine out of ten business leaders in the US and UK say their organization lacks at least one critical resource necessary for defense against a cyberattack - and three-quarters of those leaders say believe a cybersecurity breach is inevitable.
These findings, based on research conducted by research firms Vanson Bourne and Osterman on behalf of security firm Nominet, show confusion about the role and responsibility of CISOs remains a factor in many organizations, with 35% of executives saying that the CEO — not the CISO — is responsible for response to a data breach. That's more than the 32% who say that cyber-breach response is the CISO's job.
The report suggests that this discrepancy might be one of the reasons only half of CISOs feel valued by the executive team, with 18% saying that the executive team is indifferent (or worse) to the security team.
That indifference is having an impact on CISOs, with 27% reporting that the job has an impact on their physical or mental health and 23% saying that it has hit their personal relationships. All of this despite 76% of C-level executives saying that the CISO is a "must have" position.
For more, read here.