Overall, do you think cyber laws and regulations are currently evolving in the right direction?

Security Strategy & RoadmapRegulatory Compliance

Yes, absolutely14%

Yes, for the most part72%

No, some recent changes are concerning3%

Absolutely not – most recent changes are concerning3%

Unsure/can’t say7%

69 PARTICIPANTS
519 viewscircle icon2 Comments
Sort by:
IT Manager in Constructiona year ago

I believe each Country is following the internal needs but the current implementation lacks of a Global and at scale vision / roll-out.

CISO in Insurance (except health)a year ago

I believe that the current evolution of cyber laws and regulations is largely heading in the right direction. It's crucial to recognize that as technology advances, our legal frameworks must also adapt to address new challenges and threats. This proactive approach ensures that we are not only protecting current infrastructures but also anticipating future vulnerabilities. Continuous improvement in cyber laws helps in fostering a more secure digital environment, encouraging responsible behavior among organizations, and ultimately, safeguarding user data.

Content you might like

Do you have dedicated teams for both DevOps and DevSecOps?

Yes29%

Only DevOps44%

Only DevSecOps12%

We don't have a dedicated team for either DevOps or DevSecOps13%

Other (please share in the comments)

View Results

How are you currently managing SIEM costs? Have you found effective ways to actually reduce storage costs for your SIEM?

Read More Comments

As part of our NYSE IPO prep, we’re debating how to communicate our system hardening efforts in regulatory disclosures (e.g., SEC Form 20-F, SFC).

Would you recommend sharing % compliance (e.g., “85% CIS Tier 2”) or sticking to qualitative descriptions of how we identify and mitigate risks? Also, do SFC/ISO 27001 expectations require full ISMS integration, or is a % model acceptable?

I'm looking to go for the Certified CISO certification & training as I'm an aspiring CISO. Any recommendations and additional certifications that I should be doing along with that? I already have CISSP. 

Read More Comments

Zero trust needs to be a standard security practice.

Strongly agree7%

Agree61%

Neutral23%

Disagree4%

Strongly disagree1%

Unsure1%

Other (share your thoughts in the comments!)

View Results