Have you ever joined a security organization after it lost credibility within the business (for instance, after a major breach)? What did you do to build it back up?

Security & GRC Security Strategy & Roadmap

3k views1 Upvote3 Comments

Sort by:

Senior Information Security Manager in Software3 years ago

Not directly.

But some years ago I was involved with the ISSA Generally Accepted Information Security Principles (GAISP) project.
Since it was 100% volunteer-based and had no real leadership, it just sort of petered out.

CIO in Government3 years ago

I myself have not been involved with an organization that has had a major security problem. Helped an organization with a security (ransomware) problem. Most important was solving first. Provide the right information to the public and, after recovery, communicate openly and transparently about the attack, the steps taken and the approach to recovery. Of course within the standards of security and privacy. This restored confidence in the organization and normal services were quickly restored.

Senior Director Engineering in Travel and Hospitality3 years ago

Not a security organization, but in the past I have joined a place which had lost its reputation due to other reasons. Its almost like building it back from scratch, like any startup would. Take small steps in building trust, and ensure you pay high level attention to customer retention. If you are truthful and open, people will gain back trust.

Content you might like

Are you seeing changes in the quality or speed of threat intelligence from sources you relied on in previous years? Can you share how you are being impacted so far by the uncertainty around public-private partnerships for cyber information sharing?

What’s the top cybersecurity challenge concerning your organization right now?

AI-driven threats (deepfakes, automated attacks) 16%

Software supply chain risks 24%

Insider risk (both malicious & accidental) 14%

Regulatory compliance 14%

Cloud misconfigurations 14%

Shadow IT (or shadow AI) 8%

Ransomware 5%

Talent shortage in cybersecurity3%

Something else (comment to explain)3%

View Results

Have you educated your org (or at least company leadership) about pig butchering scams?

Yes44%

Not yet, but we’re planning to39%

No8%

What’s a pig butchering scam?7%

View Results

Have you ever joined a security organization after it lost credibility within the business (for instance, after a major breach)? What did you do to build it back up?

Sort by:

Content you might like

Are you seeing changes in the quality or speed of threat intelligence from sources you relied on in previous years? Can you share how you are being impacted so far by the uncertainty around public-private partnerships for cyber information sharing?

What’s the top cybersecurity challenge concerning your organization right now?

Have you educated your org (or at least company leadership) about pig butchering scams?

How can security leaders in smaller organizations stay informed about emerging threats if they don’t have access to formal threat intelligence feeds?

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

How are U.S. CISOs Addressing Liability Risk?

CrowdStrike Outage: Impact And Recovery

Impact & Perceptions of A Privacy-First Digital Era

Challenges & Tools For A Privacy-First Internet Age

IT and Infosec Collaboration on Vulnerability Patching

Take Your Insights On-the-Go