STOCK TITAN

IT Security Leaders Are Failing to Close a Boardroom Credibility Gap

Rhea-AI Impact
(Low)
Rhea-AI Sentiment
(Neutral)
Tags
Rhea-AI Summary

Trend Micro has revealed that 79% of global cybersecurity leaders feel pressured to downplay cyber risks to their organizations. This credibility gap is largely due to the challenge of communicating cyber risks in a language that senior leadership understands. Results show that 46% of security leaders gain more credibility when they can measure the business value of their cybersecurity strategy. However, only 54% of cybersecurity leaders believe their C-suite fully understands these risks. Additionally, a communication gap persists, with 34% viewing cybersecurity as an IT issue rather than a business risk. A unified Attack Surface Risk Management (ASRM) platform is suggested as a solution to provide consistent risk insights and mitigate these challenges.

Positive
  • 46% of security leaders gain credibility when they measure the business value of their cybersecurity strategy.
  • 45% of IT security leaders are given more responsibility when their strategies align with business value.
  • 44% are seen as a more valued function.
  • 43% of IT security leaders receive more budget when they can demonstrate business value.
  • 41% are brought into senior decision-making processes.
Negative
  • 79% of global cybersecurity leaders feel pressured to downplay cyber risks.
  • 43% are seen as repetitive or nagging by their board.
  • 42% are viewed as overly negative.
  • 33% have been dismissed out of hand by their board.
  • Only 54% of cybersecurity leaders believe their C-suite fully understands the organization's cyber risks.
  • 34% of respondents say cybersecurity is still treated as an IT issue rather than a business risk.
  • 80% believe only a serious breach would prompt the board to act more firmly on cyber risk.

Trend Micro reveals most security bosses are pressured to soften their language

DALLAS, May 21, 2024 /PRNewswire/ -- Trend Micro Incorporated (TYO: 4704; TSE: 4704), a global cybersecurity leader, today revealed that four-fifths (79%) of global cybersecurity leaders have felt boardroom pressure to downplay the severity of cyber risks facing their organisation.

Siloed products across the attack surface can make it difficult to tell a clear story about cyber risk to the board.

To read more on Trend's latest research, please visit:
https://www.trendmicro.com/explore/thecisocredibilitygap/2608-tl-en-rpt

"Over half of security leaders say cyber is their biggest business risk. But they're failing to communicate that risk in a language the board understands. As a result they're ignored, belittled and accused of nagging," said Trend Micro's Technical Director Bharat Mistry. "Unless they can engage better with senior leadership, corporate cyber-resilience will suffer. The first step is to attain a single source of truth across the attack surface."

Of those security leaders who came under pressure from their board, 43% say it is because they are seen as being repetitive or nagging and 42% that they are viewed as overly negative. A third (33%) claim they have been dismissed out of hand.

This points to a serious credibility gap, closely linked to their inability to align cyber with business risk. In fact, 46% say that when they have been able to measure the business value of their cybersecurity strategy, they've been viewed with more credibility.

Other benefits of this approach include IT security leaders being:

  • Given more responsibility (45%)
  • Seen as a more valued function (44%)
  • Given more budget (43%)
  • Brought into senior decision making (41%)

Yet at present, a persistent communication gap exists between IT and business leadership.

Only half (54%) of respondents are confident their C-suite completely understands the cyber-risks facing the organisation—a figure that has barely moved since 2021 (50%). Over a third (34%) of respondents say cybersecurity is still treated as part of IT rather than business risk.

Additionally, 80% believe that only a serious breach would incentivise the board to act more firmly on cyber risk.

The heterogeneous cybersecurity environment may be compounding these challenges. Siloed point products across the attack surface generate inconsistent data points, which can make it difficult to tell a clear story about cyber risk to the board.

Over half (58%) of respondents believe they'll need an increase in IT comms skills in order to rectify the situation. But a unified Attack Surface Risk Management (ASRM) platform could eliminate the need for such hefty investments, by delivering consistent and compelling risk insight—potentially in the form of an executive dashboard.

About Trend Micro

Trend Micro, a global cybersecurity leader, helps make the world safe for exchanging digital information. Fueled by decades of security expertise, global threat research, and continuous innovation, Trend Micro's cybersecurity platform protects hundreds of thousands of organizations and millions of individuals across clouds, networks, devices, and endpoints. As a leader in cloud and enterprise cybersecurity, the platform delivers a powerful range of advanced threat defense techniques optimized for environments like AWS, Microsoft, and Google, and central visibility for better, faster detection and response. With 7,000 employees across 65 countries, Trend Micro enables organizations to simplify and secure their connected world. www.TrendMicro.com.  

 

Cision View original content to download multimedia:https://www.prnewswire.com/news-releases/it-security-leaders-are-failing-to-close-a-boardroom-credibility-gap-302150977.html

SOURCE Trend Micro Incorporated

FAQ

What is the main issue identified by Trend Micro in their latest report?

Trend Micro identifies a credibility gap where 79% of cybersecurity leaders feel pressured to downplay cyber risks to their organizations.

How many cybersecurity leaders gain more credibility by measuring business value?

46% of cybersecurity leaders gain more credibility when they measure the business value of their cybersecurity strategy.

What percentage of cybersecurity leaders feel that their C-suite understands cyber risks?

Only 54% of cybersecurity leaders feel that their C-suite completely understands the cyber risks facing their organization.

How many cybersecurity leaders feel pressured to downplay cyber risks?

79% of global cybersecurity leaders feel pressured to downplay cyber risks.

What percentage of security leaders believe that only a serious breach would prompt the board to act?

80% of security leaders believe that only a serious breach would incentivize the board to act more firmly on cyber risk.

TREND MICRO INC S/ADR

OTC:TMICY

TMICY Rankings

TMICY Latest News

TMICY Stock Data

7.39B
131.19M
0.01%
Software - Infrastructure
Technology
Link
United States of America
Tokyo