Trellix’s ‘Mind of the CISO: Behind the Breach’ research reveals that 100% of CISOs receive more support from the board following an attack.
CISOs receive support through an increased budget for additional technology (43%), revising their overall security strategy (40%), implementing new frameworks and standards (27%), and creating new jobs and responsibilities after an attack (27%).
Raising cyber literacy
“Raising the urgency and cyber literacy of their board is one of the CISO’s greatest challenges,” said Bryan Palma, CEO of Trellix. “The research suggests many boards’ willingness to support cybersecurity only happens after an attack. Clearly, it should be the other way around.”
Other insights
The research that surveyed 500 global CISOs from companies globally reveals that CISOs face data theft attacks (47%), DDoS attacks (47%), and credential stealing (40%).
At least 87% of CISOs believe they need to improve holistically across people, processes, and technology after a major incident.
All respondents (100%) believe cyber attacks would have been prevented through extended detection and response (XDR).
There are hidden consequences of cyber incidents to businesses such as revenue loss (47%), business downtime (40%), stress to their SecOps teams (33%), and declining reputation (23%).