Cyber and privacy leaders' agenda | EY - It

Cyber and privacy leaders' agenda | EY - It EY Logo Insights Transformation Long-term value Sustainability Trust Technology Purpose Services Strategy by EY-Parthenon Strategy Consulting Corporate Strategy Geopolitical Strategy Commercial Strategy Working Capital Turnaround and Restructuring Consulting Sustainability Strategy AI Strategy Consulting Industry Strategy Transactions and Corporate Finance by EY-Parthenon M&A Advisory M&A Integration M&A AI-powered Technology Divestment Strategy Corporate Finance Valuation, Modeling & Economics Financial Diligence Infrastructure Advisory Transaction Tax Consulting Customer experience Cyber Risk, Compliance and Resilience Services Data and decision intelligence Risk consulting services Supply chain and operations Transformation EQ Transformation Platform People and workforce Change management and experience services HR Transformation Services Integrated workforce mobility Learning and development consulting Recognition and reward advisory Workforce analytics Assurance Services Audit Climate change and sustainability services Financial accounting advisory services Forensic and Integrity Services Private client audit experience Long-term value metrics creation IFRS Tax Tax planning Tax operating model strategy and transformation | EY – Global Tax policy and controversy Global trade Global tax reform Tax compliance Transaction Tax Tax services: Designed for private Law Corporate and commercial law Digital law Labor and employment law Legal operations Transaction law Technology EY.ai Tax technology M&A AI-powered Technology Technology transformation Alliances Managed Services Cybersecurity Managed Services Tax Managed Services Financial Accounting & Corporate Reporting Managed Services Sustainability Managed Services Risk Managed Services Legal Managed Services EY Private EY Private client experience EY private client audit experience service offerings Tax services: Designed for private Family enterprise IPO Entrepreneurship EY Sustainability Climate change and sustainability services Supply chain transformation Sustainability tax services Legal services Global renewables Climate and decarbonization Environment, Health and Safety (EHS) Services Industries Advanced manufacturing and mobility Future mobility Consumer products Consumer products Energy and resources Mining & Metals – Our latest thinking Oil & Gas – Our latest thinking Power and utilities Energy and Resources Strategy Consulting Financial Services insurance Government & public sector Infrastructure Private Equity Private equity value creation services Exit readiness PE deal origination Digital in private equity Health Health Technology, media & entertainment, and telecommunications services Careers What you can do here Careers in Tech Careers in Core Business Services Careers in Assurance Careers in Consulting Careers in EY-Parthenon Careers in Tax Careers in People Advisory Services Careers in Financial Services Careers in Global Delivery Services What it's like to work here Diversity, equity and inclusiveness Personalized career development Flexibility and mobility People stories How to join us How we hire Interview tips What we look for Job search Job search Students and entry-level Contract opportunities Talent community About us Our purpose Our people Our values Campaigns Newsroom Locations Connect with us Alumni Insights\r\n"}}" id="rich-text-c35c0a1e4551" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Insights Read More Read Less Asking the better questions that unlock new answers to the working world's most complex issues.

\r\n"}}" id="rich-text-defaf5ec78dc" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Asking the better questions that unlock new answers to the working world's most complex issues.

Read More Read Less Explore Trending topics\r\n"}}" id="rich-text-35943ceb5a1e" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Trending topics Read More Read Less See more

\r\n"}}" id="rich-text-83826fba9caf" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> See more

Read More Read Less See more

\r\n"}}" id="rich-text-f6cc6864b3fe" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> See more

Read More Read Less Spotlight\r\n"}}" id="rich-text-d707b60b7b81" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Spotlight Read More Read Less AI insights

\r\nCEO agenda

\r\nCFO agenda

\r\nEY Center for Board Matters

\r\nPodcasts

\r\nWebcasts

\r\nCase studies

\r\nOperations leaders

\r\nTechnology leaders

\r\n"}}" id="rich-text-d0be67048a3e" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> AI insights

CEO agenda

CFO agenda

EY Center for Board Matters

Podcasts

Webcasts

Case studies

Operations leaders

Technology leaders

Read More Read Less Services\r\n"}}" id="rich-text-50858c7496e9" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Services Read More Read Less EY helps clients create long-term value for all stakeholders. Enabled by data and technology, our services and solutions provide trust through assurance and help clients transform, grow and operate.

\r\n"}}" id="rich-text-d320ec72cf7c" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> EY helps clients create long-term value for all stakeholders. Enabled by data and technology, our services and solutions provide trust through assurance and help clients transform, grow and operate.

Read More Read Less Explore See more

\r\n"}}" id="rich-text-828132029877" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> See more

Read More Read Less Spotlight\r\n"}}" id="rich-text-50252b4ebb63" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Spotlight Read More Read Less EY.ai - A unifying platform

\r\nStrategy, transaction and transformation consulting

\r\nTechnology transformation

\r\nTax function operations

\r\nClimate change and sustainability services

\r\nEY Ecosystems

\r\nEY Nexus: business transformation platform

\r\n"}}" id="rich-text-9885f431e57d" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> EY.ai - A unifying platform

Strategy, transaction and transformation consulting

Technology transformation

Tax function operations

Climate change and sustainability services

EY Ecosystems

EY Nexus: business transformation platform

Read More Read Less Industries\r\n"}}" id="rich-text-d5771bf41929" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Industries Read More Read Less Discover how EY insights and services are helping to reframe the future of your industry.
\r\n

\r\n"}}" id="rich-text-f7d2770f9eb6" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Discover how EY insights and services are helping to reframe the future of your industry.

Read More Read Less Explore See more

\r\n"}}" id="rich-text-91febc7556cf" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> See more

Read More Read Less Case studies\r\n"}}" id="rich-text-503b113aefb4" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Case studies Read More Read Less

Workforce

How Microsoft built a new mobility model for cross-border talent

14 May 2024EY Global

Private equity

How GenAI is empowering talent at a PE-backed consumer brand

09 May 2024EY Global

Strategy and Transactions

How carve-outs positioned an automotive giant for future growth

12 Apr 2024EY Global

See all

\r\n"}}" id="rich-text-268e3dc79320" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> See all

Read More Read Less Careers\r\n"}}" id="rich-text-8bbbcf849607" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Careers Read More Read Less We bring together extraordinary people, like you, to build a better working world.

\r\n"}}" id="rich-text-df0f3f04a173" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> We bring together extraordinary people, like you, to build a better working world.

Read More Read Less Explore See more

\r\n"}}" id="rich-text-555a88445119" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> See more

Read More Read Less Spotlight\r\n"}}" id="rich-text-beac5ada0727" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Spotlight Read More Read Less Experienced professionals

\r\nEY-Parthenon careers

\r\nStudent and entry level programs

\r\nTalent community

\r\n"}}" id="rich-text-7139765f715f" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Experienced professionals

EY-Parthenon careers

Student and entry level programs

Talent community

Read More Read Less About us\r\n"}}" id="rich-text-97afda7dcb69" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> About us Read More Read Less At EY, our purpose is building a better working world. The insights and services we provide help to create long-term value for clients, people and society, and to build trust in the capital markets.

\r\n"}}" id="rich-text-bd4b72b5e438" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> At EY, our purpose is building a better working world. The insights and services we provide help to create long-term value for clients, people and society, and to build trust in the capital markets.

Read More Read Less Explore See more

\r\n"}}" id="rich-text-4aeb1da0739a" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> See more

Read More Read Less Top news\r\n"}}" id="rich-text-d82008834d36" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Top news Read More Read Less

Press release

Vellayan Subbiah from India named EY World Entrepreneur Of The Year™ 2024

07 Jun 2024Eric J. Minuskin

Press release

Extreme E and EY publish Season 3 report, recording 8.2% carbon footprint reduction as female-male performance gap continues to narrow

09 Apr 2024Michael Curtis

Press release

EY announces acceleration of client AI Business Model adoption with NVIDIA AI

20 Mar 2024Barbara Dimajo

Search search

close search See all results for ' '

No results have been found

Topics

See All

General

See All

People

See All

Recent Searches

Trending

How do CEOs reimagine enterprises for a future that keeps rewriting itself? EY-Parthenon CEO Outlook 2026 explores how leaders use AI, transformation and portfolio strategy to navigate uncertainty and drive sustainable growth. 20 Jan 2026 CEO agenda Is your organization upholding its integrity standards? Standards of integrity in emerging markets are improving, but the appetite and opportunity for wrongdoing continues. Learn more. 19 Sep 2022 Assurance Why human interaction remains essential to the car buying journey The dealership retains a crucial role for buyers of EVs and ICE cars. Learn four key themes that emerged from the latest EY Mobility Consumer Index. Read more. 19 Dec 2023 Automotive My EY My EY Select your location

Local sites Cyber and privacy leaders' agenda Cyber and privacy leaders must act now to tackle today’s most pressing security challenges. Facebook Twitter LinkedIn "> Link Copied Join the conversation \r\n#TransformationRealized

\r\n"}}" id="rich-text-5e2f98c03a8f" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Join the conversation  #TransformationRealized

Read More Read Less Facebook Twitter LinkedIn "> Link Copied Featured Thinking It is harder than ever to stay one step ahead of cybersecurity threats. New, more sophisticated adversaries — some operating autonomously and learning from generative AI models - are thriving in a landscape with multiple attack surfaces opened by hybrid and distributed work, cloud computing at scale, and the digitalization of everything. The stakes are high for CISOs.

\r\n"Secure Creators” are redefining cybersecurity in their industries. Secure Creators have fewer cyber incidents, were quicker to respond, and provided 1.5 to 2 times more positive impact on their organization in terms of value creation, innovation and responsiveness to market opportunities when compared to their lower-performing counterparts.

\r\nThey accomplished this not by simply deploying the right technology, innovating effectively, communicating across their organizations and minimizing attack surfaces, but by executing each of those practices better than their peers. 

\r\nHere are four actions CISOs can take to better prepare for today and tomorrow: 

\r\n"}}" id="rich-text-97d3d7633c9b" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> It is harder than ever to stay one step ahead of cybersecurity threats. New, more sophisticated adversaries — some operating autonomously and learning from generative AI models - are thriving in a landscape with multiple attack surfaces opened by hybrid and distributed work, cloud computing at scale, and the digitalization of everything. The stakes are high for CISOs.

"Secure Creators” are redefining cybersecurity in their industries. Secure Creators have fewer cyber incidents, were quicker to respond, and provided 1.5 to 2 times more positive impact on their organization in terms of value creation, innovation and responsiveness to market opportunities when compared to their lower-performing counterparts.

They accomplished this not by simply deploying the right technology, innovating effectively, communicating across their organizations and minimizing attack surfaces, but by executing each of those practices better than their peers. 

Here are four actions CISOs can take to better prepare for today and tomorrow: 

Read More Read Less Reduce technology complexity Emerging technology presents opportunities and challenges for cybersecurity leaders. Most organizations have an average of 44 security products that are often poorly integrated, difficult to maintain and support, and offer no overall visibility.

\r\nSecure Creators embrace technology but with an eye for simplicity. They are quick to experiment with novel solutions, with 72% saying they are early adopters of new technology versus 55% of “Prone Enterprises,” the weaker group in the survey. But they are also more likely to use security orchestration, automation and response, and are late-stage adopters of robotic process automation. This indicates an eye on innovations that cohere into an orchestrated, pan-organizational defense.

\r\n"}}" id="rich-text-e9871b03f362" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Emerging technology presents opportunities and challenges for cybersecurity leaders. Most organizations have an average of 44 security products that are often poorly integrated, difficult to maintain and support, and offer no overall visibility.

Secure Creators embrace technology but with an eye for simplicity. They are quick to experiment with novel solutions, with 72% saying they are early adopters of new technology versus 55% of “Prone Enterprises,” the weaker group in the survey. But they are also more likely to use security orchestration, automation and response, and are late-stage adopters of robotic process automation. This indicates an eye on innovations that cohere into an orchestrated, pan-organizational defense.

Read More Read Less Reduce the attack surface As organizations pursue digital transformation, they are coming to terms with increased cyber vulnerability. Cloud applications, 5G networks and the rise of remote and hybrid work arrangements, alongside infrastructures like VPNs, increase entry points for hackers. Software and physical supply chains increase risk, especially when the security of third-party partners isn’t guaranteed.

\r\nSecure Creators are more likely to be paying attention to supply chain risks than Prone Enterprises (39% vs. 20%). CISOs should be involved in vendor selection decisions and should help set partner relationships to bring higher levels of assurance to supply chains and to ensure there is a cyber lens to supply decisions.

\r\n"}}" id="rich-text-5ba5edfdf9f4" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> As organizations pursue digital transformation, they are coming to terms with increased cyber vulnerability. Cloud applications, 5G networks and the rise of remote and hybrid work arrangements, alongside infrastructures like VPNs, increase entry points for hackers. Software and physical supply chains increase risk, especially when the security of third-party partners isn’t guaranteed.

Secure Creators are more likely to be paying attention to supply chain risks than Prone Enterprises (39% vs. 20%). CISOs should be involved in vendor selection decisions and should help set partner relationships to bring higher levels of assurance to supply chains and to ensure there is a cyber lens to supply decisions.

Read More Read Less Align everyone behind cybersecurity CISOs don’t have to advocate for budget as much as they used to. According to the survey, budget, once a top internal challenge, was only ranked sixth out of eight in a list of obstacles. With resources in hand, CISO communications have evolved to focus on cyber readiness and training.

\r\nSecure Creators speak the language of the C-suite and boards in conveying the realities of the current moment and the continuous resource demands of the function. They also do a better job organizing training and designing best practices. While only half of respondents say their cyber training is effective, and only 36% are satisfied with non-IT adoption of best practices, this gap closes among Secure Creators, who are more satisfied with best practice adoption. Upskilling current cybersecurity workforces is by far the most popular tactic to prepare for future cybersecurity threats, cited nearly three times more than the next most popular tactic in the survey.

\r\n"}}" id="rich-text-13af01c3882a" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> CISOs don’t have to advocate for budget as much as they used to. According to the survey, budget, once a top internal challenge, was only ranked sixth out of eight in a list of obstacles. With resources in hand, CISO communications have evolved to focus on cyber readiness and training.

Secure Creators speak the language of the C-suite and boards in conveying the realities of the current moment and the continuous resource demands of the function. They also do a better job organizing training and designing best practices. While only half of respondents say their cyber training is effective, and only 36% are satisfied with non-IT adoption of best practices, this gap closes among Secure Creators, who are more satisfied with best practice adoption. Upskilling current cybersecurity workforces is by far the most popular tactic to prepare for future cybersecurity threats, cited nearly three times more than the next most popular tactic in the survey.

Read More Read Less Unleash value Cyber-secure organizations can innovate to create value with fewer risks than their less-secure peers – Prone Enterprises. Organizations without Secure Creators may be hesitant to invest in unproven technologies that have the potential to be huge value drivers for early adopters.

\r\nSecure Creators are value creators, not just value defenders. Cybersecurity leaders in these organizations are much more likely to say their cyber approach positively impacts the organization’s pace of transformation and innovation (59% vs. 16% of CISOs from Prone Enterprises), ability to rapidly respond to market opportunities (58% vs. 28%) and ability to focus on creating value rather than protecting value (57% vs. 39%).

\r\n"}}" id="rich-text-6a6720a743d1" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Cyber-secure organizations can innovate to create value with fewer risks than their less-secure peers – Prone Enterprises. Organizations without Secure Creators may be hesitant to invest in unproven technologies that have the potential to be huge value drivers for early adopters.

Secure Creators are value creators, not just value defenders. Cybersecurity leaders in these organizations are much more likely to say their cyber approach positively impacts the organization’s pace of transformation and innovation (59% vs. 16% of CISOs from Prone Enterprises), ability to rapidly respond to market opportunities (58% vs. 28%) and ability to focus on creating value rather than protecting value (57% vs. 39%).

Read More Read Less Cybersecurity leaders are looking to improve capabilities in the following areas:\r\n"}}" id="rich-text-d2e11bb72b99" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Cybersecurity leaders are looking to improve capabilities in the following areas: Read More Read Less Generative AI and machine learning AI is both friend and foe to CISOs. To tip the balance toward friendship, cybersecurity leaders are investing in AI- and machine learning-enabled tools to improve vulnerability testing, detect threats more quickly and build more adaptive security systems.

\r\nGenerative AI models like generative adversarial networks (GANs) can create synthetic data that mimic real-word cyberattacks, making attack testing and response easier. In the real-world, generative AI-enabled threat detection tools are able to analyze large amounts of data in real time, allowing them to quickly detect anomalies and patterns that may indicate a cyberattack. If a threat is realized as a cyberattack, organizations can employ quickly-adaptive response systems that have been informed by huge datasets of historical breaches.

\r\n"}}" id="rich-text-65ee7aeee153" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> AI is both friend and foe to CISOs. To tip the balance toward friendship, cybersecurity leaders are investing in AI- and machine learning-enabled tools to improve vulnerability testing, detect threats more quickly and build more adaptive security systems.

Generative AI models like generative adversarial networks (GANs) can create synthetic data that mimic real-word cyberattacks, making attack testing and response easier. In the real-world, generative AI-enabled threat detection tools are able to analyze large amounts of data in real time, allowing them to quickly detect anomalies and patterns that may indicate a cyberattack. If a threat is realized as a cyberattack, organizations can employ quickly-adaptive response systems that have been informed by huge datasets of historical breaches.

Read More Read Less Passwordless authentication No matter the complexity, passwords by themselves are not as secure as they used to be. Organizations are using passwordless authentication to eliminate the risks associated with traditional password-based authentication methods.

\r\nPasswordless authentication replaces passwords with more secure methods, such as biometric authentication, hardware-based authentication or one-time passcodes sent via email or text message. This reduces the risk of phishing attacks, credential stuffing and password-related vulnerabilities.

\r\n"}}" id="rich-text-d4d31a04dcd4" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> No matter the complexity, passwords by themselves are not as secure as they used to be. Organizations are using passwordless authentication to eliminate the risks associated with traditional password-based authentication methods.

Passwordless authentication replaces passwords with more secure methods, such as biometric authentication, hardware-based authentication or one-time passcodes sent via email or text message. This reduces the risk of phishing attacks, credential stuffing and password-related vulnerabilities.

Read More Read Less Zero trust A growing tech stack brings an expanded attack surface. Cybersecurity leaders are building zero trust architectures to deal with the near constant threat posed by attackers.

\r\nZero trust architectures use a mix of technology and protocols to identify and grant access to users within and outside an organization’s network. By default, users are not trusted and are given the least amount of privilege possible within a network. Networks are segmented to prevent widespread access if one wall is breached and barriers like multifactor authentication (MFA) are deployed to make unauthorized access more difficult.

\r\nOrganizations must adopt technology, but doing so doesn’t mean they have to be less secure.

\r\n"}}" id="rich-text-b179228cb3bc" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> A growing tech stack brings an expanded attack surface. Cybersecurity leaders are building zero trust architectures to deal with the near constant threat posed by attackers.

Zero trust architectures use a mix of technology and protocols to identify and grant access to users within and outside an organization’s network. By default, users are not trusted and are given the least amount of privilege possible within a network. Networks are segmented to prevent widespread access if one wall is breached and barriers like multifactor authentication (MFA) are deployed to make unauthorized access more difficult.

Organizations must adopt technology, but doing so doesn’t mean they have to be less secure.

Read More Read Less DevSecOps Rapid technology development can create security gaps. DevSecOps (development, security and operations) can close these gaps by building cybersecurity into the development lifecycle, from design to production.

\r\nDevSecOps encourages collaboration and communication between developers, security professionals, and operations teams, allowing for a more holistic approach to cybersecurity. Building these practices into technology governance enables rapid deployment of security updates and patches, ensuring that systems are always up to date and protected against the latest threats.

\r\n"}}" id="rich-text-da740839cdbc" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Rapid technology development can create security gaps. DevSecOps (development, security and operations) can close these gaps by building cybersecurity into the development lifecycle, from design to production.

DevSecOps encourages collaboration and communication between developers, security professionals, and operations teams, allowing for a more holistic approach to cybersecurity. Building these practices into technology governance enables rapid deployment of security updates and patches, ensuring that systems are always up to date and protected against the latest threats.

Read More Read Less

Case study: creating a smarter, safer grid for new meters

EY teams are helping a national electricity company reinforce its legacy power infrastructure for a trusted, cyber-safe future.

 

Read more

How technology fights FinCrime while enhancing regulatory compliance

EY enabled a large global bank to lead the fight against FinCrime in a way that also helped it improve efficiency and increase compliance.

 

Read more

How EY can Help

Cybersecurity Transformation

Discover how EY's Cybersecurity Transformation solution can help your organization design, deliver, and maintain cybersecurity programs.

Read more

Cyber risk, compliance and resilience services

Discover how EY's cybersecurity, strategy, risk, compliance & resilience teams can help your organization with its current cyber risk posture and capabilities.

Read more

Cyber threat management, detection and response

Discover how EY's Next generation security operations & response team can help your organization manage leading-class security operations in a programmatic way.

Read more

Cyber architecture, operational technology and engineering services

Discover how EY's services & offerings can help your business across multiple aspects of its cybersecurity portfolio.

Read more

Data protection and privacy services

Discover how EY's data protection and privacy team can help your organization protect its information over the full data lifecycle.

Read more

Digital identity and privileged access management services

Discover how EY's identify and access management (IAM) team can help your organization manage digital identities for people, systems, services and users.

Read more

Cybersecurity Managed Services

EY Cybersecurity Managed Services offer seamless, strategic security that gives you the confidence to focus on innovation and growth. Find out more.

Read more

Transformation Realized™

Consulting at EY is building a better working world by realizing business transformation through the power of people, technology and innovation.

Discover more

Our latest thinking

Six steps to confidently manage data privacy in the age of AI

Concerns raised by AI emphasize the importance of managing data privacy proactively. Consider six steps to prepare. Learn more.

Matt Whalley

2023 EY Global Third-Party Risk Management Survey

The 2023 EY Global Third-Party Risk Management Survey highlights a growing demand for data-driven third-party risk assessment. Read more.

Michael Giarrusso + 2

Is your greatest risk the complexity of your cyber strategy?

Organizations face mounting cybersecurity challenges. The EY 2023 Global Cybersecurity Leadership Insights Study reveals how leaders respond. Read more.

Richard Watson + 1

Why organizations should prepare for quantum computing cybersecurity now

This technology is finding its way out of research labs and into commercial applications, upending the norms of cryptography. Learn how to be ready.

Previous Next Richard Watson EY Global Consulting Cybersecurity Leader Public speaker. Trusted advisor on cyber risk and digital trust. Golfer, traveler and dad. Sydney, Australia Piotr Ciepiela EY Global Advisory Cyber Architecture, Engineering & Emerging Technology Leader Industry leader in business-oriented technology innovations. Believer of the “from thought to finish” approach. Father of two. Warszawa, Poland EY Global Multidisciplinary professional services organization   Kevin Janes EY Americas Cybersecurity, Privacy and Trusted Technology Market Leader Trusted technology professional. Transformation leader. Volunteer. Patron of the arts. Wine connoisseur. Chicago, IL, United States Kanika Seth EY EMEIA Financial Services Consulting Cybersecurity Leader Passionate about diversity and inclusivity across EY. Lives in London. Enjoys watching cricket. Likes to travel the world with her husband and family. London, United Kingdom Angela Saverice-Rohan EY Americas Privacy Leader Promotes cross-functional teamwork. Calm and steady in crisis. Wicked sense of humor. Mother of two. Los Angeles, CA, United States Tom Schmidt EY EMEIA Financial Services Cybersecurity Competency Leader; EY Switzerland Financial Services Cybersecurity Leader; Partner, Technology Consulting, Ernst & Young AG Focusing on all aspects of information security, cybersecurity, and IT risk management. Passionate about traveling the world and engaging in various sports. Berne, Switzerland Andy Deprez EY Belgium Cybersecurity Leader; EY EMEIA Cybersecurity Competency Leader Cybersecurity and technology enthusiast. Passionate about empowering people to succeed. Cycling buff. Diegem, Belgium Rudrani Djwalapersad EY Global Cybersecurity Risk and Resilience Lead; EY Netherlands Technology Consulting Lead Passionate about cybersecurity resilience. Conceptual thinker with realization power. Driven, results-oriented and entrepreneurial. Focused on high-performing teams. Amsterdam, Netherlands EY Global Multidisciplinary professional services organization   EY Global Multidisciplinary professional services organization   Jatin Sehgal EY Global ISO Leader and EY CertifyPoint Managing Director ISO management systems guru and subject matter professional for ISO implementation, training and certifications. Go-getter and entrepreneurial. Growth hacker, well-traveled and sport lover. Amsterdam, Netherlands Matthias Bandemer EY Germany Cybersecurity Services Leader A passionate builder of a cyber-secure working world — protecting value and creating trust. Munich, Germany Matt Hynes EY Global Cyber Transformation Leader Passionate advocate of cybersecurity. Natural translator of “cyber speak” to plain English. Part-time fighter of bad guys. Full-time husband and father. Occasional DIY handyman. Minneapolis, MN, United States Rob Belk Principal, Cybersecurity Consulting, Ernst & Young LLP Strategic cyber leader for whole of enterprise. Driven by amazing experiences of meaning and consequence. Father, husband, self-proclaimed musician. San Diego, CA, United States Shawn Fohs EY Americas Forensic & Integrity Services Privacy & Cyber Response Leader Cybersecurity and digital forensics leader. Father of two daughters. Automotive enthusiast. Neurodiversity at work supporter. New York, NY, United States Ayan Roy EY Americas Cybersecurity Competency Leader Building a secure and trusted working world combined with my philosophy to enable the business is my guiding principle in identity management. Photographer. Traveler and explorer. Father. Irvine, CA, United States EY Global Multidisciplinary professional services organization   John Hauser EY-Parthenon Americas Transaction Support – Cyber Due Diligence Leader Experienced cyber due diligence advisor. Certified Information Privacy Professional. Former FBI Special Agent. Two-time marathon runner. Tysons, VA, United States Dr. Naoto Morishima EY Japan Consulting Senior Manager Pioneer in cybersecurity governance. All-round cybersecurity consultant. PADI Advanced Open Water Diver. Tokyo, Japan Show more

On the agenda (3)

Skip west Global Information Security Survey (GISS) Global Information Security Survey (GISS) Discover east Technology Featured: How can AI help us accelerate the pace of change the world needs Discover east Cybersecurity Cybersecurity Discover east east Contact us Like what you’ve seen? Get in touch to learn more. EY logo \r\nConnect with us
\r\n\r\nOur locations\r\nMy EY\r\nSite map\r\nLegal and privacy\r\n\r\n"}}" id="rich-text-395ecb7b8a6b" data-up-is="rich-text" data-up-translation-read-more="Read More" data-up-translation-read-less="Read Less" data-up-translation-aria-label-read-more="Read more button, press enter to activate, or use Up arrow key to learn more about this content" data-up-translation-aria-label-read-less="Read less button, press enter to activate, or use Up arrow key to learn more about this content" class="up-rich-text cmp-text" data-up-analytics="rich-text"> Connect with us
Our locationsMy EYSite mapLegal and privacy Read More Read Less Open Facebook profile Open X profile Open LinkedIn profile Open Youtube profile EY refers to the global organization, and may refer to one or more, of the member firms of Ernst & Young Global Limited, each of which is a separate legal entity. Ernst & Young Global Limited, a UK company limited by guarantee, does not provide services to clients.

\r\n"}}" class="cmp-text"> EY refers to the global organization, and may refer to one or more, of the member firms of Ernst & Young Global Limited, each of which is a separate legal entity. Ernst & Young Global Limited, a UK company limited by guarantee, does not provide services to clients.

Welcome to EY it (en) You are visiting EY it (en) it en