The magnitude of recent tech layoffs and budget cuts have hit business leaders hard. In addition to the human and business impacts, there are security ramifications as well, from disgruntled employees to understaffed cybersecurity teams. Couple these risks with cyber insurance agencies pulling back coverage, and organizations are faced with ever-increasing risks, with no end in sight. The only way to mitigate risk depends not only on employees being ready, but being able to prove that they’re ready.
This year, many security leaders will be expected to provide concrete evidence to their boards, customers and regulators that their security teams are truly prepared for potential cyber crises. This competency will be particularly important once the proposed SEC’s cybersecurity incident disclosure rules are implemented.