BlackFog conducted a survey of more than 500 IT decision makers across the United Kingdom and the United States. According to the research, 70% of respondents believe incidents of CISOs being held liable for cybersecurity events has negatively influenced their perception of the role. Furthermore, 34% of respondents believe the prosecution of individuals following a cybersecurity event is a “no-win” situation for cybersecurity leaders, as many may experience internal consequences for reporting failings but may experience prosecution for failing to do so.
The research also indicated that this regulatory scrutiny has increased accountability and led to internal adjustments for organizations. Among those surveyed, 44% report their organization has enacted processes to minimize cybersecurity exposure.
Other key findings from the report include:
- Heightened scrutiny and personal liability has encouraged the Board to take cybersecurity more seriously, according to 41% of respondents. This percentage was higher in the U.K. (47%) and lower in the U.S. (35%).
- Only 10% of respondents say the Board’s increased support has led to a greater cybersecurity budget.
- 49% believe the potential of individual prosecution following a cyber incident would increase accountability among cyber professionals. 15% believe it would deter professionals from seeking CISO roles.
.jpg?height=200&t=1699287763&width=200 "green and pink pyramid on blue screen")
.jpg?height=200&t=1668187948&width=200 "tim-mossholder-sxb8StmTfaw-unsplash (1).jpg")
