Are the recent ransomware headlines combined with the focus the U.S. administration has been putting on cybersecurity, especially this latest advisory, making it easier to have conversations with leadership or making leadership more responsive?
Just curious. What are your thoughts?
I would say so, especially with finances at stake. Too bad we always have to wait for a disaster to happen to get the higher-ups to make decisions that already came too late and with a price.
My thoughts only
It is a good first step however until all governments implement similar strategies, it may not go far.
It may make conversations with some execs easier BUT as we have seen time after time, as soon as a crisis passes, the glow or enthusiasm goes away.
Maybe being in the business for 35 years+ has jaded me.
Again, great first step
If you are a CISO and not concerned about PREPARING against ransomware then you are probably already looking for a job change. Until we get serious about implementing automated preventative controls humans will still be the cause for attacks being successful.
I think it will provide an opening for the conversations to happen.
These conversations should have been happening all along. It is unfortunate it takes a highly publicized incident or two to get to having the conversations.
Let's just hope if any regulation or legislation comes out of this it is well thought out and not a knee jerk poorly written reaction.