Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • NEWS
    • Security Newswire
    • Technologies & Solutions
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • Logical Security
    • Security & Business Resilience
    • Profiles in Excellence
  • PHYSICAL
    • Access Management
    • Fire & Life Safety
    • Identity Management
    • Physical Security
    • Video Surveillance
    • Case Studies (Physical)
  • CYBER
    • Cybersecurity News
    • More
  • BLOG
  • COLUMNS
    • Career Intelligence
    • Cyber Tactics
    • Cybersecurity Education & Training
    • Leadership & Management
    • Security Talk
  • EXCLUSIVES
    • Annual Guarding Report
    • Most Influential People in Security
    • The Security Benchmark Report
    • Top Guard and Security Officer Companies
    • Top Cybersecurity Leaders
    • Women in Security
  • SECTORS
    • Arenas / Stadiums / Leagues / Entertainment
    • Banking/Finance/Insurance
    • Construction, Real Estate, Property Management
    • Education: K-12
    • Education: University
    • Government: Federal, State and Local
    • Hospitality & Casinos
    • Hospitals & Medical Centers
    • Infrastructure:Electric,Gas & Water
    • Ports: Sea, Land, & Air
    • Retail/Restaurants/Convenience
    • Transportation/Logistics/Supply Chain/Distribution/ Warehousing
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MEDIA
    • Interactive Spotlight
    • Photo Galleries
    • Podcasts
    • Polls
    • Videos
      • Cybersecurity & Geopolitical Discussion
      • Ask Me Anything (AMA) Series
  • MORE
    • Call for Entries
    • Classifieds & Job Listings
    • Newsletter
    • Sponsor Insights
    • Store
    • White Papers
  • EMAG
    • eMagazine
    • This Month's Content
    • Advertise
  • SIGN UP!
CybersecuritySecurity Leadership and ManagementLogical SecurityCybersecurity News

86% of cyber professionals cite unknown cyber risks as a top concern

By Jordyn Alger, Managing Editor
Question marks painted on trees

Image via Unsplash

August 6, 2024

A report from Critical Start reveals a majority of cyber professionals (86%) consider unknown cyber risks to be a top concern. This represents a 17% increase from the previous year, highlighting the importance of effective threat detection and response. Key findings from the report include: 

  • 66% of organizations have limited insight into the company’s cyber risk posture. 
  • 65% of executives are concerned the organization’s risk mitigation priorities do not align with its cybersecurity investments. 
  • 83% of cyber professionals experienced a cyber breach that required attention. This is in spite of traditional threat detection and response measures. 

Security leaders respond

Chris Morales, Chief Information Security Officer at Netenrich:

“Navigating the balance between budget constraints and the escalating costs of cyber incidents is challenging. However, cybersecurity is not just a cost center. It is a critical component of overall business resilience and trust. In addition, security burnout, an escalating issue in the cybersecurity community, has reached a crucial point, especially for security analysts and managers handling their organization’s security operations. This burnout is primarily due to the increasing volume of security events and is further exacerbated by a skills shortage and the complexity of managing these newer threats. 

“Embracing technology that amplifies IT and security teams’ capabilities enables them to stay ahead of threats despite budgetary constraints. The solution is not simply acquiring more tools or hiring more talent but a strategic shift towards a data-driven approach. This approach empowers IT and security professionals, unlocking greater value from existing investments while enhancing the work environment for security and operations teams.”

Jason Soroko, Senior Vice President of Product at Sectigo:

“Unlike traditional cybersecurity, which focuses on prevention, cyber resiliency ensures continuous operations during and after incidents. As threats evolve, so must an organization’s defenses, adapting to advanced persistent threats, zero-day exploits, ransomware and supply chain attacks. Cyber resiliency is crucial for business continuity, minimizing operational, financial and reputational damage, meeting regulatory requirements, and maintaining customer trust.

“Achieving cyber resiliency begins with a thorough risk assessment to identify and prioritize assets, threats, vulnerabilities and potential impacts. Developing a comprehensive resiliency plan that includes strategies for prevention, detection, response and recovery is essential. Implementing a robust security architecture with layered defenses and establishing a well-defined incident response plan with clear roles and responsibilities are critical steps. Continuous monitoring, including real-time systems and threat intelligence, helps detect and respond to incidents swiftly.” 

Piyush Pandey, CEO at Pathlock:

“Whereas cyber risk monitoring was traditionally focused on the IT infrastructure risks presented by hardware software bugs, today’s threats are focused on user access. Organizations need to know what level of risk they are willing to take with user access and adjust their access policies accordingly. That is trickier than it sounds because a policy that is too restrictive hampers productivity and causes user frustration which often leads to work-arounds that create greater risk. Organizations can stay ahead by eliminating access risk — early and often. From doing access risk analysis prior to providing access to ensuring access is granted in a compliant manner supported by regular user access risk assessments and certifications, an organization can ensure that they are doing all they can to create a zero-risk environment. 

“Like many functions in an organization, challenges are driven by the costs associated with internal and external resources. In the case of monitoring cyber risk, the ability to automate critical, but routine tasks can help reduce the workload of internal audit, risk management and IT security. Defining a well thought out set of workflows for managing access and monitoring access and transaction exceptions in real time can free up internal resources, reduce the dependency on external resources, and create a more proactive risk management program.” 

KEYWORDS: cyber resiliency security leaders threat detection threat response

Share This Story

Looking for a reprint of this article?
From high-res PDFs to custom plaques, order your copy today!

Jordynalger

Jordyn Alger is the managing editor for Security magazine. Alger writes for topics such as physical security and cyber security and publishes online news stories about leaders in the security industry. She is also responsible for multimedia content and social media posts. Alger graduated in 2021 with a BA in English – Specialization in Writing from the University of Michigan. Image courtesy of Alger

Recommended Content

JOIN TODAY
To unlock your recommendations.

Already have an account? Sign In

  • Cyber tech background

    Security’s Top Cybersecurity Leaders 2026

    Security magazine’s Top Cybersecurity Leaders 2026 award...
    Cybersecurity
  • Iintegration and use of emerging tools

    Future Proof Your Security Career with AI Skills

    AI’s evolution demands security leaders master...
    Security Leadership and Management
    By: Jerry J. Brennan and Joanne R. Pollock
  • The 2025 Security Benchmark Report

    The 2025 Security Benchmark Report

    The 2025 Security Benchmark Report surveys enterprise...
    The Security Benchmark Report
    By: Rachelle Blair-Frasier
Manage My Account
  • Security Newsletter
  • eMagazine Subscriptions
  • Manage My Preferences
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Popular Stories

Trophy and soccer ball

Security Experts Discuss Threats to FIFA World Cup 2026

Soccer stadium

How the Current Iran-US Conflict May Impact World Cup Security

Hand reaching up out of the ocean

What I Learned About Burnout the Hard Way (and How to Actually Fix it)

Neighborhood

Residential AI Data Centers: Security, Privacy, and Governance Concerns

Officers at an event

The 2026 FIFA World Cup Will Test Security Operations Like Never Before

SEC 2026 Benchmark Banner

Events

July 8, 2026

The 2026 Security Maturity Benchmark Report: Insights From Senior Security Leaders

LIVE: July 8, 2026 at 2 pm EDT In this webinar, speakers will share key insights from the report, including why today’s threat environment demands greater maturity and how to evaluate your organization’s current security posture.

View All Submit An Event

Products

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

See More Products


Alertmedia sponsored webinar

Related Articles

  • person holding their phone while using computer

    Ransomware reported as a top concern for 64% of consumers

    See More
  • Person holding phone that is open to gmail app

    Over half of tech leaders cite phishing as a top security concern

    See More
  • SEC0419-leadership-feat-slide1_900px

    Cloud Security Risks Will Be a Top Concern for Organizations in 2020

    See More

Related Products

See More Products
  • 1119490936.jpg

    Solving Cyber Risk: Protecting Your Company and Society

  • 9780367339456.jpg.jpg.jpg

    Cyber Strategy: Risk-Driven Security and Resiliency

  • A Leaders Guide Book Cover_Nicholson_29Sept2023.jpg

    A Leader’s Guide to Evaluating an Executive Protection Program

See More Products

Events

View AllSubmit An Event
  • August 27, 2025

    Risk Mitigation as a Competitive Edge

    ON DEMAND: In today’s volatile environment, a robust risk management strategy isn’t just a requirement—it’s a foundation for organizational resilience. We'll explore how forward-thinking organizations are elevating risk mitigation from a necessary cost to a source of strategic value. 
View AllSubmit An Event
×

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

SIGN UP TODAY!
  • RESOURCES
    • Advertise
    • Contact Us
    • Store
    • Want More
  • SIGN UP TODAY
    • Create Account
    • eMagazine
    • Newsletter
    • Customer Service
    • Manage Preferences
  • SERVICES
    • Marketing Services
    • Reprints
    • Market Research
    • List Rental
    • Survey/Respondent Access
  • STAY CONNECTED
    • LinkedIn
    • Facebook
    • YouTube
    • X (Twitter)
  • PRIVACY
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY

Copyright ©2026. All Rights Reserved BNP Media, Inc. and BNP Media II, LLC.

Design, CMS, Hosting & Web Development :: ePublishing