Adopting new solutions is the toughest topic for C-level to discuss with IT colleagues
A Kaspersky study has revealed that every third C-level executive (34%) struggles to speak about adopting new security solutions with their IT or IT security colleagues. The latter however, feel increasing the budget for cyber security is the toughest topic to discuss with non-IT management.
According to the poll the majority IT workers say that the main reason their cyber security budge was lowered was that top management sees no reason to invest much in this sphere. Kaspersky conducted a special surveyto explore if this situation might be a result of unclear communication between IT security staff and executives, anddiscover whether there is a lack mutual understanding between these two tribes.
The study reveals in the UAE and KSA that, while almost half of top managers (43%) think IT-security employees should better communicate cyber risks to business,only 17% of cybersecurity workers admit they have some difficulties explaining any aspect of their work to non-IT colleagues and executives.
IT and non-IT workers also differ on the most complicated topics to debate. C-level executives’ three toughest subjects to talk about with IT staff are: adopting new security solutions (33%), expanding the budget for IT security (31%) and changes to thecybersecurity policy (30%).
For IT workers the top-3 toughest themes to discuss with non-IT executives are the need to increasethe IT security budget (56%), raising cybersecurity awareness among employees (45%) and adopting new third-party solutions (43%).
On the subject of finding common ground, the majority of respondents agree that the most efficient ways to facilitate discussions about IT-security issues are to use reports and numbers (47%) and choose real life examples (44%). Besides these topics C-level executives also said that citing real life examples (54%) would allow them to best understand their IT-security staff. The IT teams, on the other hand, believe reports and numbers (52%) will help them to better communicate with executives.
“It can be assumed that non-IT executives struggle to discuss the adoption of new cybersecurity solutions because of the abundance of complex technical terms and concepts often used by IT security staff. The latter, however, don’t like to speak about increasing budgets since C level executives expect them to use business metrics to justify their needs“. – says Ivan Vassunov, VP, Corporate Products, Kaspersky. “Today, in a difficult economic environment and complicated threat landscape mutual understanding between business and IT security people is more important for business continuity than ever before. To avoid additional cybersecurity risks it is crucial that both teams know how to speak a common language based on numbers, reliable referencesand understandable arguments”.
To make the communication between IT security and business functions within the company more transparent, Kaspersky recommends the following:
Allocate cybersecurity investments into tools with proven efficacy and present new security concepts (including SASE, XDR and Zero Trust) to the board as investment projects or even business case with calculated ROI. For example, in the cases of XDR (Extended Detection and Response) and SASE (Secure Access Service Edge) implementation, it is important to communicate that these technologies allow the burden on the IT security team to be reduced, while simultaneously improving company’s cybersecurity posture due to centralization and automation of processes.
Use resources, such as theIT Security Calculator and reports based on experts’ observationscontaining structured information about the threats and security measures most relevant to your particular industry and company size to verify the probability of risks and the protective measures needed.
Acquireadditional knowledge to better understand professionals from other spheres. While business basics can be gained from training courses, non-IT executives have an opportunity to walk in a CISO’s shoes to gain insights into the most relevant IT security challenges.
The full report and more insights on communications issues between C-level and IT security managers are available via the link.
Adopting new solutions is the toughest topic for C-level to discuss with IT colleagues
Kaspersky
Related Articles Information
Adopting new solutions is the toughest topic for C-level to discuss with IT colleagues
A Kaspersky study has revealed that every third C-level executive (34%) struggles to speak about adopting new security solutions with their IT or IT security colleagues. The latter however, feel increasing the budget for cyber security is the toughest topic to discuss with non-IT management.Read More >Top five online dating threats cybercriminals are using this Valentine’s season
Love is in the air this Valentine’s Day, and for many, it inspires to look for a special someone. However, as online dating popularity continues to grow so do the threats from cybercriminals looking to exploit vulnerable individuals. In 2022, there were over 366 million online dating service users. By 2027, it is estimated that there will be 440 million people seeking love through online platforms.– this is despite past research by Kaspersky which found that 37% of people surveyed in the Middle East, Turkiye, Africa region worry about being scammed on dating apps. In the spirit of love and sharing, Kaspersky is spotlighting its top five online dating threats to watch out for this Valentine’s Day – and its experts’ tips for staying safe when dating online.Read More >Cryptocurrency volatility and security concerns: Kaspersky research identifies key barriers to crypto adoption in the UAE
Kaspersky explored user trends in cryptocurrency and found out that over half of (55%) cryptocurrency users fear losing money due to volatility, and no longer use digital currencies, according to latest Kaspersky research. Additionally, 16% of respondents have already lost money and stopped investing as a result.Read More >