“Executives hate surprises” begins a new white paper, Managing Cybersecurity Surprises – the Executive’s Perspective, by FAIR model creator Jack Jones, and goes on to detail the four most likely reasons that organizations get blindsided by cybersecurity failures:
- Poor visibility into the risk landscape
- Mis-prioritizing critical issues
- Failure to deal with root causes of problems
- Poor communication
Jack goes into detail on each of these obstacles with some hands-on advice for senior managers in dealing with the (often psychological) limitations that keep organizations from overcoming them.
“The bottom line is that unless organizations get a firm grip on the issues I've discussed in this white paper, it doesn’t matter how much money is thrown at cybersecurity or how much executive support is given to CISOs. Executives (and customers) will still be exposed to significantly unpleasant cybersecurity surprises.”
The white paper Managing Cybersecurity Surprises – the Executive’s Perspective today. If you are interested in reading more from Jack and the rest of the community, join the FAIR community today. Membership is free to risk and security professionals.