A new global survey by Splunk and Oxford Economics highlights the growing influence of Chief Information Security Officers (CISOs) in corporate decision-making. The report reveals that 82% of CISOs now report directly to the CEO, a sharp increase from 47% in 2023. Additionally, 83% participate in board meetings frequently, signaling a stronger alignment between cybersecurity and business strategy.
However, while 60% of CISOs acknowledge that board members with cybersecurity expertise significantly impact security decisions, only 29% of boards include a member with a cybersecurity background. This gap underscores the need for improved communication and education between CISOs and board members.
CISOs with strong board relationships report better collaboration across their organizations, especially with IT operations (82%) and engineering teams (74%). These CISOs are also more likely to leverage AI-driven threat detection, data analysis, incident response, and proactive threat hunting.
Despite this progress, gaps in priorities remain. While 52% of CISOs prioritize emerging technologies, only 33% of board members share the same focus. Similarly, 51% of CISOs emphasize security workforce development, compared to 27% of board members. Boards also expect CISOs to develop stronger business acumen (55%), emotional intelligence (45%), and communication skills (52%), adding to the complexity of their roles.
Regulatory compliance remains a pressing concern, with 21% of CISOs admitting they faced pressure to withhold compliance issues. However, 59% said they would act as whistleblowers if their organization ignored compliance mandates. Notably, only 15% of CISOs rank compliance as a top metric, while 45% of board members see it as critical.
Budget constraints further challenge CISOs, with 64% expressing concerns about inadequate cybersecurity funding. 18% of CISOs reported canceling business initiatives due to budget cuts, and 64% linked lack of funding to cyberattacks. Alarmingly, 94% of CISOs have experienced a disruptive cyberattack, with 55% facing them repeatedly.
As cyber threats grow, bridging the CISO-board divide, prioritizing security investments, and fostering stronger collaboration will be crucial for organizations to enhance digital resilience.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
