Proofpoint, a global leader in cybersecurity and compliance, has released its annual “Voice of the CISO 2024” report, which reveals that three-quarters of Chief Information Security Officers (CISOs) in Spain identify human error as the primary cybersecurity risk.
Key points from the report include the following:
– Human Error as Top Vulnerability: 75% of CISOs in Spain believe human error is the biggest vulnerability in their organizations, up from 65% in 2023.
– Use of AI to Mitigate Risks: 87% of CISOs are utilizing AI-driven technology to protect against human errors and block advanced threats targeting individuals.
– Growing Confidence in Security Measures: 61% of CISOs feel at risk of a cyberattack in the next 12 months, down from 72% in 2023. Additionally, only 54% believe their organization is not prepared to face a targeted cyberattack, compared to 64% the previous year.
– Concerns about Generative AI: 62% of Spanish CISOs see generative AI as a significant security risk, with tools like Microsoft 365, collaboration platforms like Slack and Teams, and generative AI applications like ChatGPT causing worry.
– Employee Turnover and Data Loss: 46% of CISOs have experienced losses of confidential data in the last 12 months, with employee departures contributing to 70% of these cases. Despite this, 82% remain confident in their security controls.
– Adoption of DLP Technology and Security Training: 44% of CISOs have implemented Data Loss Prevention (DLP) technologies, and 52% have invested in employee security training, higher percentages than the previous year.
– Top Threats: Malware (43%), ransomware attacks (33%), and email fraud (33%) are the biggest perceived threats in 2024.
– Attitude towards Ransom Payments: 63% of CISOs in Spain believe their organization would pay to restore systems and prevent data release in a ransomware attack. Additionally, 81% would rely on insurance claims to cover losses.
– Enhanced Relationship with the Board: 87% of CISOs report alignment with board members on cybersecurity issues, a significant increase from 68% in 2023.
– Persistent Pressures and Challenges: 60% of CISOs feel exhausted, and 61% face unrealistic expectations. Concerns over personal liability and the need to maintain executive insurance coverage remain, with 76% worried about liability and 81% unwilling to join an organization without director’s insurance.
Fernando Anaya, Proofpoint’s country manager for Spain and Portugal, reflects on the findings, emphasizing the importance of vigilance and adaptation for collective cyber resilience. The “Voice of the CISO 2024” report offers an in-depth look at the cybersecurity landscape from the perspective of those at the forefront of data protection and defense against emerging threats.