Home BUSINESS CISO: More Successful At Work After Security Incidents

CISO: More Successful At Work After Security Incidents

A new study from Symantec shows that experience of cybersecurity incidents has a positive impact on those responsible for.

A new study by Symantec recommends companies hire a Chief Information Security Officer, or CISO for short, who has already had his own experience with avoidable security incidents. According to this, cybersecurity specialists who have already experienced such incidents have positively changed their behavior. They became more confident and more attentive overall. The high-alert study is based on a survey of 3,045 cybersecurity decision-makers in France, Germany, and the UK.

The results show that a survived security incident significantly reduces the future – perceived – stress at the workplace of the security experts and at the same time increases the likelihood that they will share their experiences with successful attacks to make this wealth of experience available to the entire team.

CISO Is Strengthened By Surviving Security Incidents

“It might sound like a contradiction at first, but if I were to offer you two CISO candidates with identical skills, but one of them finds dealing with regulation less stressful, less likely to suffer from burnout, and more willing to learn what they have learned – and count towards it also failures – to share who will you choose?”

For cybersecurity professionals who have already experienced a preventable security incident, it is:

  • 24 percent less likely to feel “burned out.”
  • 20 percent less likely to be indifferent to their work.
  • 15 percent less likely to feel personally responsible for an incident that could have been avoided.
  • 14 percent less likely to feel “doomed” all the time.
  • 14 percent are more likely to share their learning successes.
  • 14 percent less likely to consider quitting their jobs.

CISO Learns From Mistakes In Security Incidents

One result is particularly favorable for cybersecurity teams: experts who have already experienced a security incident are 14 percent more likely to share their experience with their colleagues. This is extremely important as the study simultaneously shows a lack of strategic and operational information exchange within the industry.

Serious security incidents are critical moments in a CISO’s career. Because of the lack of information sharing revealed by the study, it is difficult to learn from the experiences of others. Fifty-four percent deliberately do not discuss incidents or attacks with colleagues within the industry, 50 percent report an apparent lack of cross-industry information exchange concerning handling security incidents. This is a clear contrast to their opponents – the cybercriminals – who exchange malware and collaborate in other ways.

One reason for the inadequate exchange of information and knowledge seems to concern one’s reputation. However, this is not the only factor. Thirty-six percent of respondents say they are concerned that an attack under their supervision could negatively impact their careers. Therefore, they do not exchange ideas with colleagues or potential employers.

In Every Crisis, There Is Also An Opportunity

Almost half of the respondents see a crisis as inevitable – it is only a matter of time before it occurs. However, cyber security experts who have experienced a security incident are more vigilant. At the same time, the management in such companies prioritizes the implementation of security measures. “My advice to the CISO is that cybersecurity experts should see the fact that they have already experienced a security incident as an advantage, not a weakness. The experience resulting from the security incident has a positive effect on a candidate’s suitability: They are less emotional, can handle pressure better and support their colleagues better,”.

“My advice to CISOs is to learn something from every “IT security crisis.” A security incident allows companies to introduce new and improved processes and services,”. “An incident gives cyber security teams the rare opportunity to explain the security challenges and changing attack methods to colleagues. Furthermore, it is an opportunity to demand higher budgets and the most urgently needed team members. Cyber ​​security experts are allowed to drive changes that are difficult to implement in regular day-to-day business. “

Tech Buzz Reviews
Techbuzzreviews are a team full of web designers, freelancers, marketing experts, bloggers. We are on a mission to provide the best technology-related news with passion and tenacity. We mainly focus on the areas like the latest technology news, upcoming gadgets, business strategies and many more upcoming trends which are trending all over the world.

Most Popular

Optimizing Your Home Network for Better Performance

Most of our day-to-day activities depend on the internet and having a sluggish home network can be a source of constant frustration. Whether it's...

QWERTY: The Origins Of The Keyboard We Use Every Day

The historical backdrop of the QWERTY console: where the format we use on workstations, notepads, and cell phones comes from. We have it before...

The Painter’s Guide to Estimates: Unlocking Insights for Successful Projects

Introduction: Estimating the cost of a painting project is an intricate art form that demands a keen eye for detail, a deep understanding of materials...

Realme C67 – The Smartphone With A Killer Price Arrives

Designed for the needs of younger people, realm's new smartphone offers a premium experience in a low price range. The new Realme C67 is...

An Overview of APA Dissertation Format Requirements with Essential Writing Tips

An APA dissertation format communicates scientific communication by standardising research work. It promotes clarity of expression. APA style makes it easier for the reader...

Reducing Overhead Costs with LED Warehouse Lighting

In the vast expanse of a modern warehouse, lighting isn't just a matter of flipping a switch; it's an ongoing operational cost impacting everything...

The Power Of AI In Cybersecurity: 3 Questions CISOs Should Ask Themselves

To protect businesses against growing threats, it is essential to carefully review new technologies before deploying them. Even more precisely, the year of generative...