Security Market Segment LS
Friday, 22 March 2019 10:29

CEOs will take hit for cyber security incidents: study

CEOs will take hit for cyber security incidents: study Image by Gerd Altmann from Pixabay

Chief executives of companies which experience security incidents are more likely to lose their jobs than the chief information officers or the chief information security officers of the same firms, a research firm claims.

Analyst Paul Proctor of the analyst company Gartner said in a study that twice as many CEOS were being fired over cyber security incidents compared to CIOs and CISOs.

He attributed this to the fact that CEOs and and other execurives, whose core functions did not encompass IT, tended to regard cyber security as a black box and hence were unable to mount a defence after an incident.

Adding to this was the fact that neither CIOs nor CISOs indulged in plain speaking when detailing the systemic risks posed by technology, giving non-IT executives a false sense of security.

Proctor said CIOs could address these factors by providing sufficient information about the systemic risks and communicate across the divide that made non-IT executives consider security as a technical issue that had to be looked after only by technical employees.

Throwing money at a problem would not help, as it would only increase operational costs and not in any way help business outcomes, he said, adding that CIOs and CISOs should not be the defenders of an organisation as this gave technical people the role of protecting business outcomes which they could not comprehend.

Additional suggestions made by Proctor were:

  • "Address broken accountability that results in poor investment decisions and more invisible systemic risk;
  • "Do not create ineffective risk-tolerance and -appetite statements that promise to only engage in low-risk activities that run counter to sound business practices;
  • "Accept and address society’s assumption that hacks happen when people fail to do their job; and
  • "Address any lack of transparency that blocks fully-informed decision making."


Australia is a cyber espionage hot spot.

As we automate, script and move to the cloud, more and more businesses are reliant on infrastructure that has high potential to be exposed to risk.

It only takes one awry email to expose an accounts payable process, and for cyber attackers to cost a business thousands of dollars.

In the free white paper ‘6 steps to improve your Business Cyber Security’ you will learn some simple steps you should be taking to prevent devastating malicious cyber attacks from destroying your business.

Cyber security can no longer be ignored, in this white paper you will learn:

· How does business security get breached?
· What can it cost to get it wrong?
· 6 actionable tips


Sam Varghese

website statistics

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.



Recent Comments