Security News > 2024 > May > Security tools fail to translate risks for executives
The results indicate that CISOs encounter challenges in aligning security teams with the C-suite, resulting in organizational gaps in understanding cyber risk.
CISOs struggle to drive alignment between security teams and the C-suite, with 87% of CISOs saying application security is a blind spot at the CEO and board level.
75% of CISOs highlight the issue is rooted in security tools that cannot generate insights that C-level executives and boards of directors can use to understand business risks and prevent threats.
"However, many CISOs are struggling to drive alignment between security teams and senior executives because they're unable to elevate the conversation from bits and bytes to specific business risks. CISOs urgently need to find a way to overcome this barrier and create a culture of shared responsibility for cybersecurity. This will be critical to improving their ability to respond effectively to security incidents and minimize their risk exposure," added Greifeneder.
A further 77% of CISOs say current tools such as XDR and SIEM solutions cannot manage cloud complexity, as they lack the intelligence needed to drive automation at scale, and an additional 70% of CISOs say the need for multiple application security tools drives operational inefficiency due to the effort needed to make sense of disparate sources of data.
"CISOs' focus on technical intricacies may obscure the broader context of business strategy and risk management. Conversely, the C-suite often views cybersecurity as just one of many operational concerns. CISOs need to develop a holistic understanding of cybersecurity's significance in support of the organization's business imperatives rather than working under an assumption that the business needs to operate in support of a cyber security agenda. It does not! Both the C-Suite and CISOs must transcend their perspectives to understand cybersecurity's role in a wider business context. Only then will progress be made in any meaningful sense," Chris Denbigh-White, CSO at Next DLP, told Help Net Security.
News URL
https://www.helpnetsecurity.com/2024/05/08/cisos-c-suite-challenges/