40% of boards to have security committees by 2025
Company boards feel pressured to respond to cybersecurity-related risk — a trend that will lead to 40% of boards having a dedicated cybersecurity committee by 2025, Gartner predicts.
The research firm said that while less than 10% have a dedicated security committee overseen by a qualified board member today, this will rapidly increase as boards seek to make changes in response to the greater risk created by the expanded digital footprint of organisations during the COVID-19 pandemic.
Currently boards rank cybersecurity-related risk as the second-highest source of risk for the enterprise, behind only regulatory compliance risk. In addition, few directors feel confident that their company is properly secured against a cyber attack.
“To ensure that cyber risk receives the attention it deserves, many boards of directors are forming dedicated committees that allow for discussion of cybersecurity matters in a confidential environment, led by someone deemed suitably qualified,” Gartner Research Director Sam Olyaei explained.
“This change in governance and oversight is likely to impact the relationship between the board and the chief information security officer (CISO).”
Gartner is also predicting that the change in oversight will put increased scrutiny on CISOs — but the executives are also expected to benefit from more support and resources. Gartner predicts that by 2024, 60% of CISOs will establish critical partnerships with key executives in sales, finance and marketing, up from just 20% today.
“Effective CISOs realise that heads of sales, marketing and business unit leaders are now key partners as the use of technology and, subsequently, the incurrence of risk happens outside of IT,” Olyaei said.
Meanwhile the COVID-19 pandemic coupled with a pre-existing shortage of security talent will mean that by 2022, 30% of all security teams will have increased the number of employees working remotely on a permanent basis, Gartner predicts.
Even before the pandemic, 61% of organisations were struggling to find and hire security professionals. In this environment, offering support for remote work will be critical.
Thoughtworks, AWS to accelerate GenAI adoption
Thoughtworks has entered a strategic collaboration with AWS to accelerate the adoption of GenAI...
VMware customers want to keep perpetual licences
Broadcom's efforts to replace perpetual VMware licences with a subscription-based model...
Teradata deepens GenAI collaboration with AWS
Teradata's expanded collaboration with AWS will allow joint customers to access 'rapid...