The cyber threats landscape is continuously evolving, leading today’s Chief Information Security Officers (CISOs) to reassess their business’s risk appetite. According to Netskope, this shift in perspective has sparked tensions between CISOs and other C-suite members, with 92% of CISOs reporting conflicts with their CEOs.
Despite common stereotypes portraying CISOs as risk-averse individuals, only 16% of today’s CISOs classify their risk appetite as low. In fact, CISOs perceive their CEOs as even more risk-averse, with 32% believing that their CEOs have a low-risk appetite. The research reveals that 57% of CISOs have experienced an increase in their risk appetite over the past five years, likely influenced by the growing volume and complexity of cyber threats.
The surge in risk appetite can be attributed to improved access to data and analytics, cited by 76% of CISOs as a key factor. Additionally, 74% of respondents noted that experiencing a cybersecurity incident firsthand played a significant role in shaping their risk comfort levels. Interestingly, 65% of CISOs now view their role as enhancing business resilience rather than solely managing cyber risks.
However, despite the changing landscape, 23% of CISOs believe that other C-suite members fail to recognize the CISO’s role in fostering innovation within the organization. James Robinson, CISO at Netskope, emphasizes the importance of aligning security strategies with business challenges to enhance collaboration across the C-suite and drive innovation more effectively.
Furthermore, the role of the CISO is rapidly evolving, with 65% of surveyed CISOs acknowledging the swift changes in their responsibilities. The adoption of modern technologies has paved the way for CISOs to adopt a more proactive and business-oriented approach, with 59% considering themselves as business enablers rather than just protectors of the organization.
Steve Riley, Field Chief Technology Officer at Netskope, highlights the need for CISOs to navigate the balance between security and innovation, particularly as the pace of technological advancements accelerates. While CISOs are eager to embrace progressive strategies, the broader C-suite may not always be aligned with their evolving roles.
Overall, the research underscores the critical role of CISOs in driving innovation and securing business operations. As organizations face increasingly sophisticated cyber threats, CISOs must continue to adapt and collaborate effectively with their C-suite counterparts to ensure comprehensive protection and enable sustainable growth.