Leadership & Executive Communication , Training & Security Leadership , Video
World Economic Forum's Cybersecurity Outlook 2023 HighlightsWEF's Seán Doyle on Bridging Gaps Between Security and Business Leaders
According to the World Economic Forum's Global Cybersecurity Outlook 2023 report, geopolitical instability has helped to close the perception gap between business and cyber leaders' views on the importance of cyber-risk management, and "91% of all respondents" believe that "a far-reaching, catastrophic cyber event is at least somewhat likely in the next two years."
See Also: Live Webinar | Breaking Down Security Challenges so Your Day Doesn’t Start at 3pm
While cybersecurity is a growing boardroom priority, the "space and time" for CISOs and their teams to plan for cybersecurity incidents has been severely reduced, says Seán Doyle, lead at the World Economic Forum's Center for Cybersecurity and co-author of the report Global Cybersecurity Outlook 2023.
"Whereas before it might have been six months, it's gone down to three months," Doyle says. "Their planning periods might have even gone down to six weeks … and that means that they're thinking at a different tempo to the board, and the board are often there to try and help make these strategic, more systemic changes across an organization."
While cybersecurity leaders are open to supporting their changes, "they don't necessarily have the space and time to think about how to embed all of these changes into their organization and hold the hand of the board members as they do that," he says.
In this video interview with Information Security Media Group, Doyle discusses:
- Highlights from the WEF's Global Cybersecurity Outlook 2023 report;
- How cybersecurity leaders are approaching cyber risk differently than business executives;
- Recommendations for cybersecurity leaders and business executives to best secure their enterprises.
Doyle's work at the World Economic Forum's Center for Cybersecurity facilitates public-private collaboration on intelligence sharing, cybersecurity regulations, industry standards, cyber capacity building and cybersecurity skills programs.