Security News > 2020 > August > COVID-19 highlights need for business and security leaders to work together to prevent cyberattacks
Less than 50% of security leaders understand the relationship between a cybersecurity threat and how it directly affects a specific business risk, while not enough security leaders believe in a coordination with business stakeholders' needs, regarding cost, performance, and risk-reduction objectives.
There's not enough discussion on cybersecurity strategy: 47% of security leaders frequently discuss cybersecurity with business execs, and 42% of business executives rarely, "If ever," consult with security leaders on business strategies.
Even if policy requires security leaders to apply business risk-management objectives and vulnerability prioritization practices, only 44% of security leaders comply.
He suggested security leaders create a simplified, unified language "That isn't overtly technical and frames cyber risk in such a way that's easy for everyone to understand" so security and business leaders can make better decisions on managing risks.
Tenable commissioned Forrester to conduct an online survey of 416 security and 425 business executives, and to interview five business and security executives to examine cybersecurity strategies and practices at midsize to large enterprises.