fbpx
Techitup Middle East
B2B TechnologyCybersecurity

Netskope Research Reveals CISOs’ Risk Appetite

  • Over half (57%) of CISOs report increasing cyber risk appetites with (49%) reporting a good risk appetite
  • A third of CISOs see their CEOs as much more risk averse than themselves, with (32%) reporting working with a CEO who has a low risk appetite
  • 92% of CISOs report differing attitudes to risk are causing tension with the wider C-Suite 
  • 66% describe themselves as ‘walking a tightrope’ between what the business wants and what makes sense from a security perspective    

Netskope, has published new global research that finds that shifts in the cyber threats landscape have changed the way today’s Chief Information Security Officers (CISOs) evaluate their business’ risk appetite. Specifically,  92% of CISOs report that these changes are creating tensions with their CEO and other members of the C-suite, and two-thirds (66%) say they are “walking a tightrope” between what the business wants and what makes sense from a security perspective

The research surveyed more than 1,000 CISOs around the world to explore the evolution of the CISO role as a strategic member of the executive team. Contradicting legacy stereotypes of the CISO as inherently risk averse, only 16% of today’s CISOs classified their current risk appetite as low. In fact, CISOs see their CEOs as much more risk averse than themselves, with twice as many respondents (32%) perceiving their CEO as having a low risk appetite. 

Other findings expand upon the changing role of the CISO: 

  • Over half of the CISOs who participated in the research (57%) said their appetite for risk has increased in the last five years. This may be despite the increasing volume and sophistication of cyber threats, or because of it: 74% state that a first-hand experience of a cyber security incident was important in impacting their risk comfort levels.  
  • Better access to data and analytics (76%) was the top reason given for their shift in risk appetite.  
  • Two thirds of CISOs (65%) now describe their responsibility in terms of improving business resilience, rather than managing cyber risk. 
  • However, 23% of participating CISOs strongly agree that other members of the C-suite currently fail to see that the CISO role makes innovation possible.  

The rise of the progressive CISO 

Two thirds (65%) of CISOs surveyed believe the CISO role is changing rapidly, and they report becoming more proactive and progressive, a trend driven by the adoption of modern technology that creates new possibilities for driving innovation and business impact:   

  • Just 36% of CISOs see themselves playing a “protector” role primarily focused on defending the organization.  
  • In contrast, 59% of CISOs now consider themselves to be business enablers, with 67% stating that they want to play an even more active role going forward.  
  • 66% wish they could say “yes” to the business more often. 

The research was conducted on behalf of Netskope by Censuswide and interviewed 1,031 CISOs worldwide across five markets (UK, North America, France, Germany, Japan) in a wide range of sectors including healthcare, retail, finance and industry.  

Please find the full report including additional insights into CISOs attitudes of industry trends here.  

Related posts

New CIO Report: Six in 10 Businesses Struggle to Manage Cyber Risk 

Editor

Insights: Safeguarding Data Privacy

Editor

ManageEngine Site24x7 Unveils OpenAI Observability Integration for Enhanced Performance Monitoring

Editor

Leave a Comment