Chief Security Officer’s Point of View

CSO magazine recently did a poll, where 480 chief security officers and senior security executives discussed security issues and industry regulations. Besides the regulations-specific findings, these are some of the interesting facts as seen from the CSO’s point of view:

Question 8: Do you think government regulation is the best way to maximize security of our nation’s critical infrastructure?

• 23% Yes, it would make it easier to get my CEO’s attention
• 21% Yes, it will ensure the expense is distributed fairly
• 38% No, regulation is costly and counter-productive
• 18% Unsure

Question 9: Are you concerned about customers suing your company for privacy infractions?

• 34% Yes
• 55% No
• 11% Unsure

Question 11: How concerned are you about losing your job?

• 5% Extremely concerned
• 8% Concerned
• 23% Somewhat concerned
• 22% Somewhat unconcerned
• 42% Not at all concerned

Question 12: What is the #1 factor driving security investment in your organization?

• 29% Auditing, risk management, compliance
• 18% Current government/industry regulations
• 13% Maintaining customer confidence
• 13% Risk of theft of intellectual property or proprietary information
• 10% Risk of financial loss
• 7% Legal liability issues
• 2% Current terrorist threat environment
• 2% Fear of future government/industry regulations
• 6% Other

Question 13: What types of cyber crimes have you experienced at your company? (Check all that apply.)

• 46% Intrusion
• 45% Denial of service
• 27% Information theft
• 21% Fraud
• 16% Identity theft
• 4% Extortion
• 18% Other
• 22% None, my company has not experienced any cyber crime