Governance, Risk and Compliance

Inadequate cyber knowledge prevalent among tech experts

Only 10% of technologists across 90 countries were able to correctly answer most questions in a fact-based cybersecurity test while nearly 50% had at least half incorrectly answered questions, reports SiliconAngle. Best practice technologies for phishing reduction have not been selected by 64% of respondents, while 63% were unaware of the necessary identity components required for zero trust, according to an RSA Security survey given to RSA Conference attendees. The findings also showed that password recycling was practiced by two-thirds of respondents while one-third reported an inability to access work-required systems at least once a week due to operational issues. "We need the help of AI technologies to manage all the identities throughout their lifecycle. Paradoxically, even in this world where AI can dynamically assess risks and automate responses to threats, humans will have an even more important and strategic role in cybersecurity and identity security," said RSA CEO Rohit Ghai.

Related

New CISA incident reporting draft rule deemed excessive

Despite being crucial in bolstering cyber awareness, the Cybersecurity and Infrastructure Security Agency's cyber incident reporting draft rule — which would mandate critical infrastructure entities to make cyber incident and ransomware disclosures within a 72- and 24-hour period, respectively — has been regarded by trade groups and lawmakers to increase burdens not only on smaller organizations but also CISA itself, CyberScoop reports.

Related Events

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.