Right Governance Can Reduce Security Risks: ISACA President

by CXOtoday News Desk    Jan 29, 2015

cyber threats

With increasing sophisticated cyber attacks, organisations continue to grapple with what is a perfect security framework.

Terming cyber security as the foremost emerging risk for businesses, Robert Stroud, the International President of ISACA ( Information Systems Audit and Control Association), underlined the need for right strategies for balancing accelerated business growth, enhancing stakeholder value and neutralising risks therefrom.

Speaking at the ‘Digital Transformation and Innovation’ conference organized jointly by ISACA Chennai chapter and CIOKlub, he felt that right governance and structured approach to problem solving were the key to address security challenges.

ISACA and its affiliated IT Governance Institute lead the information technology control community and serve its practitioners by providing the elements needed by IT professionals in an ever-changing technology environs.

A research on adoption of emerging technologies reveals that organisations that have adopted governance driven, structured approaches are far at a greater advantage to reap predictable benefits and managing IT risks.

Considering the frequency of attacks in 2014, the year 2015 is considered to be most vulnerable for businesses.

According to the ISACA Global Cybersecurity Status Report-2015, 83% of respondents say cyberattacks are among the top three threats facing organizations today, and only 38 percent say they are prepared to experience one. 

Countries such as the US have been spearheading cyber security efforts for a considerably long time. India, not far behind, is ramping up its cyber security initiatives. 

The newly released National Cyber Security Policy (NCSP) takes a holistic view of the existing and the potential challenges and risks of operating in cyberspace.

Of CSX and skills gap

Robert Stroud also unveiled the Cybersecurity Nexus (CSX), an initiative from ISACA, a global non-profit association of Governance and IT professionals. ISACA is working towards closing the global skills gap and equip cybersecurity professionals with the knowledge and guidance they need. The CSX helps advance a skilled cybersecurity workforce through training, education and credentialing.

According to ISACA survey, 86% of respondents see a global cybersecurity skills gap—and 92% of those planning to hire more cybersecurity professionals this year say they expect to have difficulty finding a skilled candidate.

“As the global community faces growing cybersecurity skills shortages and escalating cyberattacks, now is the time to take action. I applaud the Obama administration on making cybersecurity a high priority in 2015. ISACA agrees that it is absolutely essential that we develop and train a robust cybersecurity workforce—and that is why we launched the Cybersecurity Nexus (CSX) in 2014. We take very seriously our role in addressing the skills gap through credentials, training, guidance and mentoring programs under the CSX banner,” Stroud is quoted on the ISACA website.