2 minute read
EXECUTIVE BIO
CLAR ROSSO
TITLE: CEO
Advertisement
COMPANY: (ISC)²
LOCATION: UNITED STATES
Clar Rosso has more than two decades of experience helping global professional associations and certifying bodies grow and strengthen member value. As CEO of (ISC)², she is responsible for the overall strategic direction and management of the association.
“Along with the difficulty in recruiting, businesses face challenges in retaining talent and providing continuous training, all of which is adding to the skills shortage. A recent Fortinet report has shown that 52% of leaders believe their employees still lack the necessary knowledge. This can lead to dysfunctional teams that are unprepared to handle sophisticated attacks. Adding to the problem is how some employees, who are in fact knowledgeable in these roles, start to feel burnt out due to excessive workload – in part because the burden cannot be shared by others who are less capable.
“Every business must take stock of what skills they have within their organisation and where their blind spots and key vulnerabilities might be. Only then, will they be aware of the skills they need to address the shortfall.”
the Game of Employee Retention
Remote working means increased pressure on security teams
A report published by cybersecurity provider Hornetsecurity found that a third of companies are not providing any cybersecurity awareness training to remote workers, according to new research, which also revealed almost three-quarters of remote staff have access to critical business data. The study also revealed nearly three-quarters (74%) of remote staff have access to critical data, which is creating more risk for companies in the new hybrid working world.
Despite the current lack of training and employees feeling ill-equipped, almost half (44%) of respondents said their organisation plans to increase the percentage of employees that work remotely.
"The popularity of hybrid work alongside the associated risks means that companies must prioritise training and education to make remote working safe,” says Daniel Hofmann, CEO of Hornetsecurity. "Traditional methods of controlling and securing company data aren't as effective when employees are working in remote locations, with greater responsibility falling on the individual. Companies must acknowledge the unique risks associated with remote work and activate relevant security management systems, as well as empower employees to deal with a certain level of risk."
Cyber teams to be least impacted by tech staffing cuts
This year has continued from where 2022 left off, with multiple announcements of job cuts from the world’s largest tech companies, including Google, Amazon, Microsoft, Yahoo, and Zoom. But with cuts set to continue, there are signs that cyber teams may be protected from the storm. The study – How the Cybersecurity Workforce Will Weather a Recession, conducted by the nonprofit cybersecurity association (ISC)² – found that, despite looming recession concerns, cybersecurity teams will be least impacted by staffing cuts in 2023, with C-suite executives viewing cybersecurity as an essential, valuable asset that is a strategic priority.
(ISC)²’s research found a total of 85% of respondents expect layoffs will be necessary at their organisations, but cybersecurity roles are expected to be the least affected by staff reductions, but only 10% of organisations are likely to cut jobs in cybersecurity compared to other business areas.
"The importance placed on cybersecurity professionals, even during uncertain economic times, suggests that top executives understand the critical need for a strong cybersecurity team now more than ever," says Clar Rosso, CEO at (ISC)². "This is not surprising given the upward trend in recent years where a weakening economy combined with political tensions has led to increased cyber threats. A key test for executives in 2023 will be their ability to sustain their commitment toward strengthening their organisations' resilience against evolving cyberthreats amid emerging budgetary pressures."
