The implications of the survey extend beyond mere statistics, with Metomic’s research revealing the pervasive risks associated with the proliferation of SaaS applications and the critical importance of proactive security measures in mitigating these threats
In the latest release of its “2024 CISO Survey: Insights from the Security Leaders Keeping Critical Business Data Safe,” Metomic has highlighted into the challenges facing Chief Information Security Officers (CISOs) in safeguarding sensitive information. The survey, which encompassed feedback from over 400 CISOs in the U.S. and UK, sheds light on key cybersecurity concerns and trends impacting organisations across various industries.
One of the prominent findings of the report is the escalating threat of data breaches, particularly in sectors like healthcare, finance, and manufacturing. Last year alone, U.S. companies encountered a staggering 3,205 data breaches, marking a significant surge from the previous year’s figure of 1,802 breaches. These breaches have come at a substantial cost, with the average price tag of a data breach in the U.S. soaring to $9.48 million in 2023.
Data breaches top the list of worries for CISOs on both sides of the Atlantic. However, their concerns diverge slightly beyond this point. In the U.S., CISOs also express apprehension about the implications of AI and emerging technologies, whereas their UK counterparts are more focused on phishing schemes and compromised accounts. Nonetheless, a common thread among CISOs is their intent to prioritize security operations, strategic planning, and employee training in the year ahead.
The prevalence of Software as a Service (SaaS) applications further complicates the security landscape, with a significant portion of organizations relying on hundreds of such apps to facilitate business operations. Alarmingly, the survey reveals that security breaches and the misuse of sensitive company data for training artificial intelligence models are chief concerns surrounding the adoption of generative AI solutions.
Moreover, the report highlights the persistent threat posed by malware and phishing attacks, which have become a frequent nuisance for over half of the surveyed CISOs. Building and maintaining a robust security culture emerges as a primary challenge, showcasing the need for continual investment in security awareness and training initiatives.
Despite these hurdles, the majority of CISOs express confidence in their ability to secure the necessary resources to fulfill their roles effectively. However, they acknowledge the need for greater emphasis on security operations, awareness training, and risk management within their organizations.
In light of these findings, Rich Vibert, the CEO of Metomic, emphasizes the importance of supporting CISOs in their mission to safeguard organizational data. He underscores the value of Metomic’s survey as a resource for CISOs grappling with the complexities of modern cybersecurity threats, particularly in managing SaaS ecosystems.
The implications of the survey extend beyond mere statistics, with Metomic’s research revealing the pervasive risks associated with the proliferation of SaaS applications and the critical importance of proactive security measures in mitigating these threats. With human error accounting for a substantial portion of data breaches, the need for vigilance and robust security protocols has never been more evident.
