Modernizing Authentication — What It Takes to Transform Secure Access
According to the results of a recent survey of 2,920 IT and cyber security professionals in 121 countries, fully 63 percent of respondents are against providing governments with backdoor access to encrypted information systems.
ISACA's January 2016 Cybersecurity Snapshot also found that 59 percent believe privacy is being compromised in an effort to implement stronger cyber security laws.
Fully 83 percent of respondents favor regulation requiring companies to notify customers within 30 days of the discovery of a data breach.
And while 72 percent of respondents are in favor of the U.S. Cybersecurity Information Sharing Act (CISA), only 46 percent believe their company would voluntarily share threat information following a data breach.
"The Cybersecurity Snapshot shows that the professionals on the front lines of the cyberthreat battle recognize the value of information-sharing among consumers, businesses and government, but also know the challenges associated with doing so," ISACA international president and INTRALOT group director of information security Christos Dimitriadis said in a statement.
"Cyber security has become a high-stakes, boardroom-level issue that can have crippling consequences for any C-suite executive who lacks knowledge about the issues and risks," Dimitriadis added. "Strong public-private collaboration and ongoing knowledge-sharing are needed to safeguard our organizations from cybercriminals."
The threats respondents are most worried about this year are social engineering (52 percent), insider threats (40 percent), and advanced persistent threats (39 percent).
And although 45 percent of respondents plan to hire more cyber security professionals in 2016, fully 94 percent of those respondents expect it to be difficult to find skilled candidates.
"The aggressive increase in cyberattacks worldwide is feeding a growing chasm between demand and supply in the cybersecurity talent wars," ISACA vice president and White Ops COO Eddie Schwartz said in a statement.
"It is also shedding light on a critical problem in our industry: identifying job candidates who are truly qualified to safeguard corporate assets in a landscape that is highly complex and constantly evolving," Schwartz added.
A survey of 200 U.S.-based C-level executives conducted last summer by Opinion Matters on behalf of ThreatTrack Security found that fully 47 percent of respondents view CISOs primarily as scapegoats who "should be held accountable for any organizational data breaches."
"The need for information security is keenly appreciated, but CISOs are struggling for the recognition and authority they need to be effective in defending organizations from today's increasingly sophisticated and frequent cyber threats," ThreatTrack president John Lyons said at the time.
Photo courtesy of Shutterstock.