Direct Co-ordination With CEO Can Maximise Cyber Security

by CXOtoday News Desk    Feb 13, 2018

Cyber security

Cybersecurity is a is a huge matter of concern for the entire globe and not just India. Whenever the hygiene factor is undermined, it brings up huge repercussions. It is important to understand that all the stakeholders and not just the IT Department is responsible to bar this modern-day threat and that a direct coordination of the employees with the CEO is paramount.

According to the Financial Services Information Sharing & Analysis Center, just 8 percent of cybersecurity heads at the US financial firms report to the Chief executive officer directly, whereas, more staffs should do so to improve decision-making.

The study also points out that 39 percent of chief information security officers report directly to the CIO, and 14 percent said they answer to the chief risk officer.

“Free and direct flow of critical information to the CEO and to the board of directors will help increase transparency and facilitate faster decision-making,” the group said in a statement.

However, it’s a huge task for cyber experts of the companies to get the entire workforce of the organization awakened and make them understand the sophistication of cyber-crime. Cyber assailants are so smart today that in some cases, attackers infiltrate corporate networks without IT department even knowing about it.

More than half of the respondents (54 percent) said they send quarterly reports to their companies’ board and that 18 percent do so twice a year and 16 percent annually.

Today, one of the major concern of the IT leaders in defending against attacks is the lack of willingness by employees to take precautionary steps against them, according to the latest results from the A10 Networks Application Intelligence Report (AIR).

The study highlights that most significant defense against cyberattack is employee training. As per 35 percent of those surveyed, ahead of network defense and infrastructure upgrades (25 percent) and breach prevention (17 percent).

The staff should be made to understand the nitty-gritty of cyber-threats and the security. They should thus understand that protective measures on the company’s system can still fail if an employee clicks on a link or download a spurious email attachment.