Report Reveals Majority of IT and Security Executives Say Information They Provide Is Not Actionable
SAN FRANCISCO, CA--(Marketwired - February 29, 2016) - Bay Dynamics is unveiling a new report today that details what kind of information IT and security executives report to the board of directors, how they report information and whether or not the information is effective in minimizing companies' cyber risk. The report, titled, "Reporting to the Board: Where CISOs and the Board are Missing the Mark" reveals that only two in five IT and security executives feel the information they provide to the board of directors is actionable. Even fewer believe they are getting the help they need from the board to address cybersecurity threats.
"The report reveals that both the board and security professionals are not doing their jobs when it comes to cybersecurity reporting," said Feris Rifai, co-founder and CEO at Bay Dynamics. "The board isn't holding IT and security executives accountable for providing accurate, traceable and actionable information and security executives are failing to report information that is accurate, traceable and actionable. Both parties must do better if they want to make the right decisions that minimize their cyber risk."
The report is based on a survey conducted during December 2015-January 2016 by the third party research company, Osterman Research, asking IT and security executives within 136 organizations about the types of cyber security activity they report to their board of directors. All of the respondents work for organizations that have at least 2,000 employees and are based in the United States.
Highlights from the report include:
"Security is now everyone's problem -- from the IT team to the C-suite and the boardroom. As a result, reporting the right type of information with the right context, in addition to making it actionable, has never been more critical," said Michael Osterman, Principal Analyst at Osterman Research. "It is imperative that security executives reconsider how they're getting their information, the type of information they're reporting, and how they're reporting it, so that the board can effectively take action to make smart security decisions."
To download "Reporting to the Board: Where CISOs and the Board are Missing the Mark" go to: http://baydynamics.com/resources/reporting-to-the-board-where-cisos-and-the-board-are-missing-the-mark.
About Bay Dynamics
Bay Dynamics® is the market leader in predicting and stopping cyber-attacks before they happen. The company specializes in cyber risk predictive analytics, identifying behaviors of company insiders, third party contractors and outsiders that may lead to an attack. The company's purpose-built Risk Fabric® platform assembles and correlates relevant data from existing tools in a novel patented way to provide actionable cyber risk insights, before it's too late. Bay Dynamics enables some of the world's largest organizations to understand the state of their cybersecurity posture, including contextual awareness of what their insiders, vendors and bad actors are doing, which is key to effective cyber risk management.
Follow Bay Dynamics on Twitter at www.twitter.com/BAYDYNAMICS, on LinkedIn at www.linkedin.com/company/bay-dynamics/, and on Facebook at www.facebook.com/bay.dynamics.
Bay Dynamics and Risk Fabric are registered trademarks of Bay Dynamics, Inc. Vendor Risk Assurance is a trademark of Bay Dynamics, Inc. Other trademarks mentioned are the property of their respective owners.
Contact Information:
Media contact:
Abby Ross
abby.ross@baydynamics.com
312-443-2460