Can Data Breach Experience Make CISOs More Employable?
It has been revealed that CISOs believe experience of data breaches makes them more employable.
More than half of CISOs are of the opinion that experiencing a data breach makes them more attractive to potential employers, according to a new survey from Optiv Security.
While conducting research for its “State of the CISO” report, the Optiv surveyed 200 CISOs, as well as senior security personnel from both the UK and the United States.
The firm's survey revealed a fundamental shift in the way senior executives view cybersecurity, with the fact that 58 percent of respondents said that experiencing a data breach makes them more desirable to potential employers being the most surprising.
This belief is in stark contrast with the way the subject was viewed a few years ago, when a data breach was very often considered a fireable offense.
The report by Optiv shows that attitudes towards cybersecurity are changing, with 96 percent of respondents either slightly or strongly agreeing that senior execs have a clearer understanding of cybersecurity than they did five years ago.
The company also discovered that 67 percent of businesses now prioritize cybersecurity above all other business considerations, as incidents of cyber-attack have not only increased, but are also more severe.
Cybersecurity risk has now become so important, that 76 percent of those surveyed believe that CISOs will soon begin to be named as CEOs.
Optiv found that a significant number of CISOs are failing to adhere to best practices when it comes to cybersecurity. For example, more than half of US CISOs and 44 percent of UK CISOs indicated that they practice their incident response plans only once a year or less, when industry best practices call for more frequent incident response tests and practice.
Of all the CISO surveyed by Optiv, 88 percent agreed that it would be a good idea to have a global treaty in place on cybersecurity, similar to the Geneva Convention, where countries agree to a set of principals governing their online conduct.