Adrian Johnson
TLDR:
- The theme among CISOs currently is how to get stakeholders on board with more robust cybersecurity training protocols
- INE Security CEO, Dara Warn, emphasizes the importance of a strategic approach combining financial impact data, case studies, and narratives to secure board support for cybersecurity training
In the article “INE Security Enables CISOs to Secure Board Support for Cybersecurity Training,” the key elements discussed include the importance of cybersecurity training for IT professionals in light of the increasing number of cyberattacks and rapid technological advancements. CISOs are faced with the challenge of securing boardroom support for heavy investments in preventative measures like training. The human factor in cybersecurity is highlighted, with human error being a leading cause of breaches. Real-world case studies, such as the Capital One data breach and the Maersk NotPetya attack, are used to emphasize the importance of specialized training in preventing costly breaches.
The return on investment of cybersecurity training is explained, with well-trained workforces serving as the first line of defense against threats. Strategies for crafting a compelling narrative for the boardroom are outlined, including speaking the board’s language, using real-world examples, leveraging data and statistics, emphasizing regulatory compliance, and highlighting competitive advantage.
Objections regarding the cost and time required for cybersecurity training are addressed, with arguments based on long-term cost savings and the efficiency of targeted training programs. The article concludes by emphasizing the importance of all stakeholders being on the same page to ensure the long-term success and security of an organization.
