Express Computer

Home  »  News  »  Alignment issues between security teams and the C-suite are exposing organisations to AI-driven advanced cyber threats, Dynatrace’s CISO report reveals

Alignment issues between security teams and the C-suite are exposing organisations to AI-driven advanced cyber threats, Dynatrace’s CISO report reveals

News
By Express Computer
0 51

Dynatrace released its annual CISO survey. This year’s report, “The state of application security in 2024”, reveals that organisations are struggling with internal communication barriers, which hinder their ability to
address cybersecurity threats. The results indicate that CISOs find it difficult to drive alignment between security teams and the C-suite, leaving gaps in the organization’s understanding of cyber risk. As a result, they find themselves more exposed to advanced cyber threats, at a time when AI- driven attacks are on the rise.

In this year’s report, Dynatrace explored these communication gaps to better understand how a unified approach to observability and security can help teams collaborate more effectively and reduce exposure to risk.
Key findings include:
 Lack of C-level and board alignment leads to cyber risks: CISOs struggle to drive alignment between security teams and the C-suite, with 87% of CISOs saying application security is a blind spot at the CEO and board level.
Security teams are too technical: Seven out of ten C-suite executives interviewed say security teams talk in technical terms without providing business context. However, 75% of CISOs highlight the issue is rooted in security tools that cannot generate insights that C-level executives and boards of directors can use to understand business risks and prevent threats.
 AI is driving more advanced cyber threats: Addressing this technology and communications gap is becoming more critical as the rise of AI-driven attacks and cyber threats significantly increase business risk.
Against this backdrop, nearly three-quarters (72%) of CISOs say their organisation has experienced an application security incident in the past two years. These incidents carry significant risk, with CISOs highlighting the common consequences they’ve experienced, including impacted revenue (47%), regulatory fines (36%), and lost market share (28%).

“Cybersecurity incidents can have devastating consequences for organisations and their customers, so the issue has rightfully become a critical board-level concern,” said Bernd Greifeneder, Chief Technology Officer at Dynatrace. “However, many CISOs are struggling to drive alignment between security teams and senior executives because they’re unable to elevate the conversation from bits and bytes to specific business risks. CISOs urgently need to find a way to overcome this barrier and create a culture of shared responsibility for cybersecurity. This will be critical to improving their ability to respond effectively to security incidents and minimise their risk exposure.”

Additional research findings include:
· The need to drive closer engagement between security teams and the C-suite is becoming more important as the rise of AI exposes organisations to added risk. CISOs are concerned about AI’s potential to enable cybercriminals to create new exploits faster and execute them on a broader scale (52%). They are also concerned about AI’s potential to allow developers to accelerate software delivery with less oversight, leading to more vulnerabilities (45%).

· As they look for a solution, 83% of CISOs say DevSecOps automation is more important to manage the risk of vulnerabilities introduced by AI. Additionally, 71% of CISOs say DevSecOps automation is critical to ensuring reasonable measures have been taken to minimise application security risk.

· A further 77% of CISOs say current tools such as XDR and SIEM solutions cannot manage cloud complexity, as they lack the intelligence needed to drive automation at scale, and an additional 70% of CISOs say the need for multiple application security tools drives operational inefficiency due to the effort needed to make sense of disparate sources of data.

“The growing use of AI is a double-edged sword, creating efficiency gains for both digital innovators and those seeking to breach their defences,” continued Greifeneder. “On the one hand, there’s a greater risk of developers introducing vulnerabilities through AI-generated code that has not been adequately tested, and on the other, cybercriminals can develop more automated and sophisticated attacks to exploit them. Adding further pain, organisations must also comply with emerging regulations such as the SEC mandate, which requires them to identify and report on the impact of attacks within four days. Organisations urgently need to modernise their security tools and practices to protect their applications and data from modern, advanced cyber threats. The most effective approaches will be built on a unified platform that drives mature DevSecOps automation and harnesses AI to deal with distributed data at any scale. These platforms will provide the insights the entire business can rally behind and use to demonstrate compliance with stringent regulations.”

Get real time updates directly on you device, subscribe now.

Express Computer

Express Computer is one of India's most respected IT media brands and has been in publication for 24 years running. We cover enterprise technology in all its flavours, including processors, storage, networking, wireless, business applications, cloud computing, analytics, green initiatives and anything that can help companies make the most of their ICT investments. Additionally, we also report on the fast emerging realm of eGovernance in India.

You might also like More from author
Leave A Reply

Your email address will not be published.

LIVE Webinar

Digitize your HR practice with extensions to success factors

Join us for a virtual meeting on how organizations can use these extensions to not just provide a better experience to its’ employees, but also to significantly improve the efficiency of the HR processes
REGISTER NOW 
Powered by Convert Plus
India's Leading e-Governance Summit is here!!! Attend and Know more.
Register Now!
close-image
Attend Webinar & Enhance Your Organisation's Digital Experience.
Register Now
close-image
Enable A Truly Seamless & Secure Workplace.
Register Now
close-image
Attend Inida's Largest BFSI Technology Conclave!
Register Now
close-image
Know how to protect your company in digital era.
Register Now
close-image
Protect Your Critical Assets From Well-Organized Hackers
Register Now
close-image
Find Solutions to Maintain Productivity
Register Now
close-image
Live Webinar : Improve customer experience with Voice Bots
Register Now
close-image
Live Event: Technology Day- Kerala, E- Governance Champions Awards
Register Now
close-image
Virtual Conference : Learn to Automate complex Business Processes
Register Now
close-image