CIO Agenda 2019: Take a Hard and Soft Approach to Cybersecurity

Develop a comprehensive strategic vision for dealing with new cybersecurity threats.

Ninety-five percent of CIOs expect cybersecurity threats to increase and impact their organizations.

In most organizations, the CIO is accountable for cybersecurity. But the IT organization alone can’t provide it. The frequency of social engineering attacks (such as phishing) require broader behavioral and cultural change.

Top-performing CIOs counter threats using a combination of hard and soft measures like education to influence the people who use technology and for executive awareness building.

The 2019 Gartner CIO Survey found CIOs take both a hard and soft approach to cybersecurity.

The ultimate purpose of a cybersecurity strategy is to establish and maintain the enterprise and its people, partners, services and things as trustworthy, resilient participants in the digital economy. Ensure cybersecurity programs become digital business enablers, rather than obstacles to innovation.

2021 Top Priorities for Security and Risk Management Leaders

Emerging trends, expected challenges and next steps for security and risk management leaders in 2021

Download eBook

Gartner clients can read more in The 2019 CIO Agenda: Securing a New Foundation for Digital Business by Andy Rowsell-Jones, et al.

Get Smarter

Follow #Gartner

Attend a Gartner event

Explore Gartner Conferences

Gartner IT Roadmap for Cybersecurity: A Resilient Strategy

Gartner IT roadmap for cybersecurity based on unbiased research and...

Learn More


Get actionable advice in 60 minutes from the world's most respected experts. Keep pace with the latest issues that impact business.

Start Watching