Overconfident security execs may be putting their organisations at greater risk, according to new research.
A report by services firm Accenture has revealed that of the 2,000 enterprise security practitioners – representing companies with annual revenues of more than $1bn – three in four were confident in their ability to stop all crooks getting into their systems.
Titled Building Confidence: Facing the Cybersecurity Conundrum (PDF), the report revealed that more than half of security executives admit it can take months to detect sophisticated breaches, and a third of those successful breaches are never discovered at all.
[...] The French spend 9.4 per cent of their total IT budget on security, ahead of the 8.2 per cent global average, while the Australians tend to scrimp by with a mere 7.6 per cent on security, pipped by the Americans at 8 per cent – though ironically it is French, American and Australian companies who are the least confident in their ability to monitor for a breach.
http://www.theregister.co.uk/2016/11/02/survey_finds_75_of_security_execs_believe_they_are_invicible/
[Related Video]: GoldenEye: Boris - I Am Invincible!
(Score: 5, Interesting) by q.kontinuum on Thursday November 03 2016, @07:48AM
In the eyes of his superior, any executive who openly states he might be hacked thereby admits lack of knowledge and insufficient precautions. With two candidates, one claiming he knows his business and is able to secure the entrusted systems, the other one stating he does his best effort but might not know all attack vectors and might not even be able to implement counter-measures against all known attacks, which one will the less knowlegable boss entrust with the job?
And when the shit hits the fan, the self-confident executive will still be able to claim it was the chinese (which excuses everything always, because we all know that all asians are born geek and since they don't play by the rules, logical limitations don't apply to them. So it's entirely their fault, nothing a security executive could have prevented. Works every time.) Or he can blame a vendor for a bug in their security product. Rumour has it, the price paid for the product is 5% for the product and 95% for the permission to redirect blame. Who got ever fired for buying Microsoft/IBM/Cisco?
Registered IRC nick on chat.soylentnews.org: qkontinuum
(Score: 2) by Runaway1956 on Thursday November 03 2016, @10:27AM
Yeah, but you gotta understand. Chinese = ninja. Never mind that ninja are actually Japanese, in American minds ninja conjures up images of unstoppable, implacable, irresistable Asians doing their worst to destroy The American Way Of Life. Ninja - that's the ticket. "Boss, I went up against these Chinese Ninja Hackers, I did my best, but THEY ARE THE BEST!"
If you really want to blow minds, make it Ninja X, because everyone knows that X sells everything.
Buzzwords, soundbites, blah blah blah.
(Score: 2) by q.kontinuum on Thursday November 03 2016, @04:14PM
Unfortunately, this
"Boss, I went up against these Chinese Ninja Hackers, I did my best, but THEY ARE THE BEST!"
excuse only works so often before boss starts hiring them to replace his own security executive...
Registered IRC nick on chat.soylentnews.org: qkontinuum
(Score: 0) by Anonymous Coward on Thursday November 03 2016, @12:10PM
Don't forget the russians... I mean they even hacked James motherf-ing Bond.
(Score: 1, Interesting) by Anonymous Coward on Thursday November 03 2016, @01:18PM