Information technology (IT) professionals around the world are in favor of the U.S. Cybersecurity Information Sharing Act of 2015, but in a recent survey conducted by ISACA, an international professional association based in Rolling Meadows that focuses on IT governance, the majority of IT professionals polled were not in favor of giving government officials backdoor access to encrypted information systems.
The majority of the professionals also believed that as stronger cybersecurity laws are developed, privacy will ultimately be compromised, the survey indicated.
The survey showed 83 percent of the professionals polled wanted companies to be required to notify customers of data breaches within 30 days of discovery; 72 percent were in favor of the U.S. Cybersecurity Information Sharing Act; but only 46 percent believed the companies for which they work would report breaches within that time frame if they were not required by law to do so.
“The Cybersecurity Snapshot shows that the professionals on the front lines of the cyberthreat battle recognize the value of information-sharing among consumers, businesses and government, but (they) also know the challenges associated with doing so,” ISACA International President Christos Dimitriadis said. “Cybersecurity has become a high-stakes, boardroom-level issue that can have crippling consequences for any C-suite executive who lacks knowledge about the issues and risks. Strong public-private collaboration and ongoing knowledge-sharing are needed to safeguard our organizations from cybercriminals.”
The survey showed the top three threats that global IT and security professionals are the most concerned with are social engineering, insider threats and advanced persistent threats. Other threats of concern included cyber-skills gaps.
“The aggressive increase in cyberattacks worldwide is feeding a growing chasm between demand and supply in the cybersecurity talent wars," ISACA International Vice President Eddie Schwartz said. "It is also shedding light on a critical problem in our industry: identifying job candidates who are truly qualified to safeguard corporate assets in a landscape that is highly complex and constantly evolving."
ISACA recently unveiled the findings of its newest report, U.S. Enacts Cybersecurity Information Sharing Legislation, on its Cybersecurity Legislation Watch webpage.