What is the most important role of corporate culture in addressing the psychological impact of digital security?

Security Strategy & Roadmap IT Strategy & Roadmap

Corporate culture has no influence on digital security.16%

Prioritizing digital security above other aspects in corporate culture.50%

Creating a work environment that supports mental well-being.17%

All of the above.16%

Your own perspective (Comment).1%

113 PARTICIPANTS

1k views1 Comment

Sort by:

Senior Manager - IT Governance in Healthcare and Biotech2 years ago

Corporate culture cannot be separated from risk awareness, this includes digital security. Rather organisations should strive to weave risk awareness into corporate culture and educate employees in an understanding that being risk aware in itself supports the wellbeing of, not only the organisation, but also its employees. (Working together to keep everyone safe)

Content you might like

I am looking for insights on establishing an Architecture Review Board (ARB) within our organization. As we aim to enhance our architectural governance and ensure alignment with our strategic objectives, we recognize the importance of setting up an effective ARB. To this end, I would greatly appreciate your guidance on the following aspects: 1. Establishing a Charter: What key elements should be included in the ARB charter to clearly define its purpose, scope, and authority? 2. Member Selection: What criteria should we consider when selecting members for the ARB to ensure a diverse and knowledgeable board? 3. Review Process: Could you share best practices for structuring the review process to ensure thorough and consistent evaluations of architectural proposals? 4. Decision-Making: What are effective methods for making decisions within the ARB, and how can we ensure transparency and accountability? 5. Documentation and Communication: What templates or tools would you recommend for documenting reviews and communicating decisions to stakeholders? 6. Measuring Success: How can we establish criteria for measuring the success and impact of the ARB on our architectural practices? Your expertise and experience in this area would be invaluable to us as we embark on this initiative. Any additional insights or resources you could provide would be greatly appreciated.

How does your organization handle security team involvement in change requests submitted to CAB/RAB — specifically in relation to formal security review and approval?

Always required – Security must formally review and approve every change request.11%

Required for security-impacting changes – Security reviews only changes flagged as having potential security implications. Please comment : Who decides which changes require security review and which do not ? Is this determination manual or automated? How do you avoid gaps or oversights in this process ?82%

Not required – Security does not review changes submitted CAB/RAB by other teams. 7%

Risk-based or automated – Security involvement is determined by a tiered model or automated risk scoring within ITSM.

View Results

Currently in our Enterprise Architecture tool and repository, we have a Business Capability Model (BCM) and a Technology Capability Model (TCM). Enabling Applications (e.g., SAP, Salesforce etc.) are mapped to the BCM, and enabling technologies (e.g., API gateway) are mapped to the TCM. However, some capabilities like Data Management are common to both models and we are trying to figure out best way to represent that.

How have you organized your capability model? Is it a single model containing business and technical capabilities or two separate models? If later, how are you organizing common capabilities like Data Management?

How do you think AI will disrupt business across industries? Add to my list: 1. Content creation 2. Photos and video production 3. Basic coding and debugging 4. Strategic analysis to be highly complimented

Are you currently using or planning to use one of these cloud-based testing solutions? Choose all that apply.

AWS Device Farm27%

BrowserStack26%

Google Firebase Test Lab29%

Kobiton19%

LambdaTest24%

pCloudy15%

Perfecto13%

Sauce Labs10%

Xamarin Test Cloud8%

Other cloud-based testing8%

N/A7%

View Results

What is the most important role of corporate culture in addressing the psychological impact of digital security?

Sort by:

Content you might like

How does your organization handle security team involvement in change requests submitted to CAB/RAB — specifically in relation to formal security review and approval?

How do you think AI will disrupt business across industries? Add to my list: 1. Content creation 2. Photos and video production 3. Basic coding and debugging 4. Strategic analysis to be highly complimented

Are you currently using or planning to use one of these cloud-based testing solutions? Choose all that apply.

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

How are U.S. CISOs Addressing Liability Risk?

CrowdStrike Outage: Impact And Recovery

2024 Cloud Spending: IT Balances Costs with GenAI Innovations

Are U.S. Organizations Insuring Against CISO Liability Risk?

Building an Effective Executive Succession Plan

Take Your Insights On-the-Go