Miscommunications in IT security lead to cybersecurity incidents: Report – Times of India
A recent survey suggests that more than half of top-tier managers in India (80%) admit that a miscommunication with the IT department or IT security team has resulted in at least one cybersecurity incident in their organizations. The recent Forrester analytics survey says that companies spend an average of 37 days and $2.4 million to detect and recover from a cybersecurity breach.
According to the study, 100% of non-IT respondents experienced miscommunications regarding IT security. With regards to consequences, most often a breakdown in communications leads to serious project delays (81%) and cybersecurity incidents (80%).
The study highlights that worsening business indicators, unclear communication with IT-security employees also affects the emotional state of the team and makes executives question IT-security employees’ skills and abilities. “About 48% executives admit that misunderstandings make them lose confidence in the business’ safety and 37% of them find this situation makes them nervous, which affects their work performance,” adds the report.
Kaspersky has given some recommendations which will help in improving communication between IT security and business functions within the company.
Kaspersky recommends the following:
According to the study, 100% of non-IT respondents experienced miscommunications regarding IT security. With regards to consequences, most often a breakdown in communications leads to serious project delays (81%) and cybersecurity incidents (80%).
The study highlights that worsening business indicators, unclear communication with IT-security employees also affects the emotional state of the team and makes executives question IT-security employees’ skills and abilities. “About 48% executives admit that misunderstandings make them lose confidence in the business’ safety and 37% of them find this situation makes them nervous, which affects their work performance,” adds the report.
Kaspersky has given some recommendations which will help in improving communication between IT security and business functions within the company.
Kaspersky recommends the following:
- Understanding professionals from another sphere requires not only empathy, but also additional knowledge. While IT security workers could get more information about basic business terms and concepts in various training courses, non-IT executives have an opportunity to walk in a CISO’s shoes to get insights on the most relevant IT security challenges.
- Both IT and non-IT managers should not lock themselves in a professional “information bubble”. Staying aware of the agenda in both the business and cybersecurity worlds is another key to successful communication and mutual understanding between them.
- Cybersecurity specialists should use reliable and understandable arguments when communicating their needs to the board and justifying their cybersecurity budget. Use information about the threats and security measures most relevant to your particular industry and company size to prove the probability of risks and the protective measures needed.
- Cyber threats are becoming more and more relevant and companies are forced to increase their information security budgets, it’s extremely important to allocate cybersecurity investments in tools with proven efficacy and ROI. This means tools that lower the level of false positives, and reduce time of attack detection, the time spent per case and other metrics are important to any IT security team.
For all the latest Technology News Click Here
For the latest news and updates, follow us on Google News.
Denial of responsibility! TechNewsBoy.com is an automatic aggregator around the global media. All the content are available free on Internet. We have just arranged it in one platform for educational purpose only. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, all materials to their authors. If you are the owner of the content and do not want us to publish your materials on our website, please contact us by email – [email protected]. The content will be deleted within 24 hours.