Dive Brief:
- The majority of CIOs and CISOs, 94%, say they have practices that compromise protection of events like cyberattacks and outages, according to a Tanium survey of more than 4,000 international decision makers and 500 CIOs and CISOs.
- Decision making can move from confident to rattled because of a lack of visibility into endpoints like laptops, servers, virtual machines, containers and cloud infrastructure. Nearly one-third of respondents said departments work in silos, adding to the lack of transparency in IT operations.
- Growing organizational complexity is a key disruptor to resilience says 34% of respondents, followed by 33% saying the sophistication of hackers outranks their IT teams.
Dive Insight:
CIOs and CISOs are expected to keep the lights on, but the pressure to do so has, in a roundabout way, caused these leaders to make compromises.
Modern business practices and expectations give employees freedom to implement tools that make their days easier and direct repercussions to employees who may be linked to vulnerabilities are limited. The IT department, however, feels the heat.
The majority of IT leaders, 79%, believe their company's employees unintentionally invited security risk into their organization in the last 12 months. Operational silos add to this risk.
Low visibility into what tools employees are using add even more pressure to implement more governance around applications. The move to treat SaaS applications "like a puppy" where every department serves as its puppies' "owner," also reduces the risk of future scalability concerns.
CIOs and CISOs have to trust the reliability of tools they don't have immediate insight into, like using a public cloud provider.
