Business leaders ’embarrassed to admit lack of cyber security knowledge’
Many business leaders are embarrassed to reveal their knowledge of cyber security is fairly basic, an expert has warned.
According to Greg Day, European chief security officer at Palo Alto Networks, company bosses have become increasingly aware of the need to fully understand the cyber threat in recent years, Computer Weekly reports.
"I have seen a significant shift in the few years with business leaders wanting to understand more so they can have confidence in what their CISO (chief information security officer) is telling them," Mr Day observed.
However, he told attendees at the Palo Alto Networks End User Cybersecurity summit in London that some company bosses are reluctant to actually speak with their CISO about cyber security.
This, he said, is partly because they are worried about revealing how little they already know on the subject.
"Despite this thirst for knowledge, many are struggling with the challenge of how to go about acquiring the knowledge they seek because they are too embarrassed to ask their CISO very basic questions," Mr Day commented.
Author and journalist Misha Glenny, another speaker at the summit, agreed that boards are often reluctant to ask what CISOs mean, as members do not "want to expose their lack of knowledge or appear stupid".
As a result, he believes every business should have a "digital interpreter" – someone who understands the technology, the security implications and the pressures on the board, and explain to the board "what things mean".
Mr Glenny added that by having somebody communicate information in a way that boards can understand would help them recognise why "the CISO is asking for a particular investment".
Share This Post, Choose Your Platform!
With over 25 years in the business telecoms industry and an unrivalled reputation of delivering excellent, personal customer service, Arrow is one of very few companies in the UK able to provide a full telecoms, IT and energy consultancy and service proposition.
Savings through automation, scale, improved service. We’ve got that covered. But the true value comes with empathy, through empowerment, collaboration. It’s connecting people that drives us forward. It’s people that make tomorrow happen.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.