40% of boards to have security committees by 2025
Company boards feel pressured to respond to cybersecurity-related risk — a trend that will lead to 40% of boards having a dedicated cybersecurity committee by 2025, Gartner predicts.
The research firm said that while less than 10% have a dedicated security committee overseen by a qualified board member today, this will rapidly increase as boards seek to make changes in response to the greater risk created by the expanded digital footprint of organisations during the COVID-19 pandemic.
Currently boards rank cybersecurity-related risk as the second-highest source of risk for the enterprise, behind only regulatory compliance risk. In addition, few directors feel confident that their company is properly secured against a cyber attack.
“To ensure that cyber risk receives the attention it deserves, many boards of directors are forming dedicated committees that allow for discussion of cybersecurity matters in a confidential environment, led by someone deemed suitably qualified,” Gartner Research Director Sam Olyaei explained.
“This change in governance and oversight is likely to impact the relationship between the board and the chief information security officer (CISO).”
Gartner is also predicting that the change in oversight will put increased scrutiny on CISOs — but the executives are also expected to benefit from more support and resources. Gartner predicts that by 2024, 60% of CISOs will establish critical partnerships with key executives in sales, finance and marketing, up from just 20% today.
“Effective CISOs realise that heads of sales, marketing and business unit leaders are now key partners as the use of technology and, subsequently, the incurrence of risk happens outside of IT,” Olyaei said.
Meanwhile the COVID-19 pandemic coupled with a pre-existing shortage of security talent will mean that by 2022, 30% of all security teams will have increased the number of employees working remotely on a permanent basis, Gartner predicts.
Even before the pandemic, 61% of organisations were struggling to find and hire security professionals. In this environment, offering support for remote work will be critical.
Avanade launches Microsoft-powered AI services
Avanade has launched a line of seven new services designed to help mid-market APAC businesses...
ServiceNow adding new GenAI capabilities
ServiceNow is adding more than 150 new generative AI tools and features to its Now Platform,...
Snowflake expands AI Data Cloud portfolio
Enterprise AI company Snowflake has announced two new additions to its AI Data Cloud portfolio...