Which part of the CIA triad have you found most difficult in recent years & why? Is emerging tech making one area especially challenging these days?

Security & GRC Disruptive & Emerging Technologies Security Strategy & Roadmap

115 views1 Upvote3 Comments

CIO in Education, 501 - 1,000 employees

I'm not sure I've found any of these to be the most difficult, but I think "I" is the most interesting. If you consider supply chain hacks in the past (e.g. Solarwinds and LastPass), and if you consider what AI potentially can do with deep fakes, that's why I'd vote I.

Director of IT in Education, 5,001 - 10,000 employees

I would say integrity if many folks are involved in updating and changing.

Senior Director Engineering in Travel and Hospitality, 10,001+ employees

Integrity! Very hard to keep the trustworthiness

Content you might like

In terms of your incident response strategy, are employees required to have the org’s instant messaging platform (Teams, Slack, etc.) installed on their personal mobile device in case their computers become nonfunctional during an incident?

Threat Intelligence & Incident Response Resilience Security Strategy & Roadmap

Yes, all employees30%

Yes, but only for some employees54%

No15%

I’m not sure…1%

84 PARTICIPANTS

531 views1 Comment

There are so many types of social engineering attacks – how should we determine which ones to focus on for employee security awareness training?

Awareness & Training Threat & Vulnerability Management Security Strategy & Roadmap

Head of Information Security in Services (non-Government), 1,001 - 5,000 employees

You need to tell people what to expect and what not to expect from IT. We’ve tried to train people to expect that IT will do certain things or make requests which are okay to comply with, but IT will never call you out of ...read more

1 Reply

589 views2 Comments

If you had a magic wand - what's the #1 daily business challenge you'd eliminate?

People & Leadership Strategy & Architecture Cloud +57 more

CTO in Software, 201 - 500 employees

Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.

142 19 Replies

Does it actually make sense to have multiple cybersecurity point solutions that serve the same purpose? Or does that added complexity just weaken your overall security posture?

Security Strategy & Roadmap Threat & Vulnerability Management Threat Intelligence & Incident Response

Head of Information Security in Services (non-Government), 1,001 - 5,000 employees

It depends on how good the solution is at addressing your security needs. I lean towards simplifying the security stack, but in some cases existing solutions just don't provide the level of security that you need. If ...read more

338 views1 Comment

Are you using any of these strategies to improve your org’s cyber risk quantification?

Risk Management Governance, Risk & Compliance Security Strategy & Roadmap

Integrating more data sources9%

Calibration training36%

Refining risk scenarios29%

Statistical modeling9%

AI/ML capabilities11%

Adding standards integration3%

Other (list in the comments)1%

196 PARTICIPANTS

579 views