Survey reveals CISOs' views on jobs, Zero Trust, MFA and more

The survey of hundreds of CISOs at large enterprises paints a picture of a cybersecurity world under siege heading into 2025.

  • Tuesday, 15th October 2024 Posted 1 year ago in by Phil Alsop

Portnox has unveiled the results of its latest survey, “CISO Perspectives for 2025,” revealing critical insights into the challenges faced by Chief Information Security Officers (CISOs) at large enterprises.

The survey, which polled 200 CISOs from companies with annual revenues exceeding $500 million, highlights growing concerns around the effectiveness of Zero Trust, the limitations of Multi-Factor Authentication (MFA), and the looming threat to job security amidst an increasingly complex cybersecurity landscape.

The results present a stark picture of a cybersecurity world under siege, where security leaders must constantly balance ironclad defenses with user-friendly experiences while navigating regulatory demands and soaring cyber insurance premiums.

Key Survey Findings:

Job Security on the Line. Nearly all CISOs (99%) are worried about losing their positions if a breach occurs, with a striking 77% of CISOs being very or extremely concerned. This underscores the immense pressure they face in protecting their organizations.

MFA Under Fire. While MFA has become a cornerstone of many organizations' security strategies, 85% of CISOs expressed concerns that it’s not keeping up with increasingly sophisticated attacks. Common issues include password fatigue, insider threats, and phishing exploits.

Passwordless Gaining Steam. Passwordless authentication represents the agreed upon method for stronger security, but only 7% of organizations have fully implemented it, citing cost, complexity, and employee resistance as key barriers.

NAC Investment is Growing. CISOs unanimously agree that Network Access Control (NAC) is a critical component of any Zero Trust framework they put in place. Reliance on NAC is growing, as more than 4 in 5 are increasing their investment in the next year.

Zero Trust Skepticism. Every CISO surveyed (100%) agreed that Zero Trust Network Access (ZTNA) has not fully lived up to its promise, with many organizations still in the early stages of adoption.

Compliance Challenges. As regulations like NIS2 loom, 90% of CISOs feel overwhelmed by constantly shifting compliance demands, making it difficult to ensure they’re always up to date.

Cyber Insurance Gaps. With 58% of CISOs unsure whether their cyber insurance policies adequately cover critical threats such as supply chain attacks, many organizations are left exposed to potentially devastating risks.

Breaches Remain a Top Concern. Despite the challenges, 86% of CISOs are laser-focused on preventing breaches. However, many concede that their current defenses may not be enough to withstand today’s advanced threats.

“CISOs today are under immense pressure to do more with less, while the stakes have never been higher,” said Denny LeCompte, CEO of Portnox. “The survey results underscore a clear reality: security leaders need tools that not only protect their organizations but also provide peace of mind in an increasingly hostile environment.” 

UK's pragmatic approach to AI automation prioritises pre-built solutions over bespoke development, contrasting with US's costlier custom-centric...
Certification's true value lies beyond speed, focusing on continuous system improvement for genuine resilience.
Evolve IP's recent session in Rotterdam brought UK and Dutch partners closer to foster collaboration and growth within the tech industry.

NetApp reveals StorageGRID 12.1 to enhance AI workloads

Posted 3 days ago by Sophie Milburn
NetApp releases StorageGRID 12.1, enabling better management of AI workloads across distributed environments.
The UK government has announced funding for new AI labs focused on reliability and efficiency, with collaboration planned between researchers and...
Exploring the critical role of trustworthiness in AI for CSPs and how it affects the future of autonomous enterprises.
Toby Weiss steps in as CEO of Securonix, aiming to enhance security operations amid evolving threats.
Exploring the shortcomings in AI governance and the potential avenues for managed service providers to bridge the gap between confidence and control.