Security News > 2022 > February > Execs keep flinging money at us instead of understanding security, moan infosec pros
Around half of businesses surveyed are spending more on "Cyber attacks" than they used to, it said, while a similar number reckon their C-suites don't know what "Cyber risk management" means - possibly something about ensuring monitors are firmly bolted to desks.
"Low C-suite engagement combined with increased investment suggests a tendency to 'throw money' at the problem rather than develop an understanding of the cybersecurity challenges and invest appropriately," intoned Trend Micro.
The firm's survey of 5,000 "IT and business decision makers" from companies with more than 250 employees concluded that clueless captains of industry were still a problem, no matter how much money they threw at the IT security department.
"Most want to hold more people in the organization responsible for managing and mitigating these risks, which would help to drive an enterprise-wide culture of 'security by design'." said Trend, adding that 38 per cent of respondents wanted the CEO's neck to be on the block for security failures.
A couple of years ago Bitdefender found that just over a fifth of C-suite people lumped with the cyber security portfolio thought it was one of the most challenging topics for their peers to take seriously.
Now we've begun reaching that point perhaps what the world needs is for every C-suiter to think of security for their area of the business, not just whoever's had it dumped in their lap.
News URL
https://go.theregister.com/feed/www.theregister.com/2022/02/03/c_suite_security_survey/
Related news
- Biden bans Kaspersky antivirus software in US over security concerns (source)
- US bans Kaspersky antivirus software due to national security risks (source)
- From network security to nyet work in perpetuity: What's up with the Kaspersky US ban? (source)
- CISA director: US is 'not afraid' to shout about Big Tech's security failings (source)