As CISOs (chief information security officers) and other cyber security leaders prepare for another year of defending against the threats and vulnerabilities their organizations face, it’s worth considering some of the major trends and considerations that could impact security programs this year.
Professional services and consulting firm KPMG has released a report on eight key factors to examine, and many of these apply to small and mid-sized businesses (SMBs) as well as large enterprises.
Expanding the strategic security conversation
Securing critical assets, systems, and sensitive proprietary and customer data is no longer solely an issue for security and IT professionals. Managing and mitigating risk to help the strategic viability and operational sustainability of the organization needs to be a shared responsibility that starts with the business.
Senior business leaders now understand that managing cyber risk for competitive advantage and long-term success starts in the boardroom and the C-suite. Offloading the strategic decision-making and management of risk, especially the risk inherent in digitization, is no longer good enough. Modern security tools can only accomplish so much in terms of risk reduction if business objectives don’t include an embedded robust security framework.
To better align cyber security with the organization’s strategic business