Is a security breach the most effective driver of change?
Global CIO & CISO in Manufacturing, 201 - 500 employees
The best thing is when you can build that business case to show you've got value that you can drive to the business. We need to be compliant with SOX and TISAX, etc., for example. There are a lot of zeros involved in that. Without that business case, every wonderful new tool is going to be really hard to justify. But from an AI or data standpoint, maybe 90-98% of it is all data.VP, Chief Security & Compliance Officer in Software, 1,001 - 5,000 employees
We're getting ready to do our TISAX again. Last year we responded to over 440 audits and part of the focus is to demonstrate that integrity, but sometimes you don't get that behavior change until the problem occurs.
Senior Information Security Manager in Software, 501 - 1,000 employees
Ask it like this? Is cancer the most effective driver of smoking cessation? No. Research shows that about a third of lung cancer survivors will resume smoking.As to information security, the most effective driver of change is a company that is proactive with security and understands it benefits.
Director of IT in Software, 201 - 500 employees
It opens the door to implement new technologies and usually increases the security budget. Now how you use the extra budget/approvals for purchase is of utmost importance and directly correlated to your chances of preventing the next breachCEO in Services (non-Government), Self-employed
Not always. I'd say when it comes to security specifically, hearing about it from someone trusted who has experienced the event first hand, it's the risk of a major beach, (vs the aftermath of the breach) that fuels the need for change.Content you might like
Founder, Self-employed
Work travel is a privilege. Embracing your experience to meet new people, and see the beauty of nature and culture wherever you go.Very good17%
Good67%
Fair15%
Poor0%
Very poor0%
155 PARTICIPANTS
We provide company-wide training56%
We only train certain departments/roles32%
We have a targeted individual training approach.9%
I am unsure how we handle security training.3%
231 PARTICIPANTS
Senior Director, Technology Solutions and Analytics in Telecommunication, 51 - 200 employees
Palantir FoundryDirector of IT in Healthcare and Biotech, 501 - 1,000 employees
Overall fit of the provider's services is key in any recommendation when selecting one of the big 3 clouds for any organization. Multi-cloud is significantly more difficult than most companies realize, and selecting a ...read more
The key is to actually make good use of an incident so that you can prevent the next one.
I totally agree!
Pretty much spot on. I don't think it's industry/sector specific or anything, its more along the lines of regular human behavior, as being pro-active is not natural of a lot of people (ie. you are always stuck in reactive mode). Occasionally you do come across orgs and teams that are very pro-active and are actually taking steps to make sure they don't run into issues by addressing security early on and effectively, though it's rare unfortunately.