- News & Events
July 25, 2013
The line from the old movie classic Cool Hand Luke, “What we’ve got here is failure to communicate” pretty much sums up what goes on between IT employees and corporate management. The movie line is often misquoted as “What we have here is a failure to communicate.” Yes we looked it up. No, don’t ask why. Anyway, this failure for either party to understand the other when it comes to hacking and other online dangers can be a real threat to the security of the enterprise.
In a report “Are Security Metrics Too Complicated for Management?” which sounds like a title for a Scott Adams’ (Dilbert) book, 1,321 U.S. and UK workers in IT security, IT operations, IT risk management, business operations, compliance/internal audit and enterprise risk management were surveyed.
The report by Tripwire, a security company, and the Ponemon Institute, which is dedicated to advancing responsible information and privacy management practices in business and government, concludes that explanations by IT staff are lost on management. “Finding meaningful ways to successfully bridge this communication gap is critical to broader adoption of risk-based security programs,” the report says. “The onus for this effort clearly lies with IT security and risk professionals.”
Citing the report on qz.com, Josh Meyer notes the majority of IT professionals stated that technical information is too technical for a non-tech management audience. Half the respondents said they only communicate with executives when there’s an actual security incident. And, more than a third said it took too much time and resources to prepare and report security metrics to senior executives. The “kicker” is 18% said management wasn’t interested anyway. That really does sound like it belongs in a Dilbert comic.
ThreatMetrix is the fastest-growing provider of integrated web fraud and cybersecurity solutions. The TrustDefender™ Cybercrime Protection Platform helps companies prevent unauthorized access to web and mobile applications, protect sensitive data, and secure transactions against account takeover, payment fraud, identity spoofing, malware, and data breaches. ThreatMetrix protects more than 1,500 customers and 9,000 websites across a variety of industries, including financial services, enterprise, e-commerce, payments, social networks, government, and insurance. For more information, visit www.threatmetrix.com or call 1-408-200-5755.
To join in the cybersecurity conversation, follow us on Twitter @ThreatMetrix.
Posted by Dan Rampe
Tags: Account Takeover, Account Takeover Fraud, Bank Fraud, CNP fraud, Cookieless Device Identification, Cookies, Credit Card Fraud, Cyber attacks, Device Detection, Device Fingerprint, Device Fingerprinting, Device ID, Device Identification, Fraud Prevention, Identity theft, Malware, Malware Protection, MitB, Mobile fraud, Online Fraud, PII, ThreatMetrix, ThreatMetrix Cybercrime Protection Platform, ThreatMetrix Global Trust Intelligence Network, TrustDefender Cybercrime Protection Platform, Web Fraud