CISOs forced to use worst-case scenarios to gain board attention

Pentagon data breach exposed 30,000 travel records

A sizeable 40 percent of CISOs have felt forced to use worst-case scenarios to gain the attention of decision makers, despite recognising the damaging side effects of a ‘Project Fear’ style approach rather than stating a precise business case, according to a new commissioned study by Forrester Consulting conducted on behalf of BitSight. The report also found that companies are suffering from security data overload, with many firms having an average of nine different categories of security technologies in place.