US CEOs Are More Worried About Cybersecurity Than a Possible Recession (fortune.com) 88
With markets uncertain, many onlookers might think a recession is on the way, whether that's most CFOs in the world or voters in the United States. But domestic CEOs don't find heavy economic headwinds their biggest external business worry, according to a new survey by the Conference Board. Instead, it's cybersecurity followed by new competitors. Risk of a recession is third. From a report: After high-profile data breaches experienced over the last two years by such companies as Marriott, Equifax, and Uber, that might seem understandable. But U.S. CEOs stand in stark contrast to those of the rest of the world. Cybersecurity was the sixth most pressing issue for chief executives in Europe. It was seventh in Latin America, eighth in Japan, and 10th in China. Regarding concerns over a potential recession, Europe put that in second place, while Japan, China, and Latin America all rated it number one.
Pepperidge Farms Remembers (Score:5, Insightful)
Might want to be worried about both, my bois.
Re: Pepperidge Farms Remembers (Score:5, Interesting)
If I were a CEO I sure wouldn't worry about cybersecurity because the general public doesn't seem to care. Large, outrageous breaches have become the norm. I'm not even remotely surprised anymore.
Whether or not you care isn't their primary concern. It is the affect on stock price as compared to economic indexes. Research I have seen does show these breaches are having significant negative affects on stock price. [duo.com] It isn't as obvious while overall stock prices are rising, but when you compare them to similar companies their stock price is not keeping up with the market.
Stock prices certainly fall in recessions too, but so does the stock price of their competitors. If things get too dire they always have their golden parachutes to save them.
GPDR fines to look forward to (Score:2)
When the EU states start to fine companies for the breaches that have occurred since May last year when serious fines became possible, they'll start to WORRY.
Re: (Score:3)
Thanks for that link. I see that's fairly new data. Until recently, older research had demonstrated that the dreaded "reputation" impact is actually negliegable and can typically countered with a moderate expense of PR.
It's good to see newer data to the opposite.
Re: (Score:2)
You incel GOP kike faggots and your jew-worshiping cunt leader will hang.
I know you're an AC, and don't know better, but the terms "incel" and "faggots" are mutually exclusive. So come back when you can make sense.
Re: (Score:2)
Wel, not necessarily. For an example, you could find the nearest mirror.
I see, we gots ourself someone that doesn't know his insult terms.
You have the weakest insult game I've ever seen.
Re: (Score:2)
When CEO's weren't worried about a recession leading up to the 2007 Great recession.
Might want to be worried about both, my bois.
Their arses are covered for a recession by golden handshakes/parachutes... A cyber security breach may lead them to being dismissed without their full payment.
Re:Pepperidge Farms Remembers (Score:5, Insightful)
Their arses are covered for a recession by golden handshakes/parachutes... A cyber security breach may lead them to being dismissed without their full payment.
This makes sense. If a company loses money in a recession, it is not the CEO's fault. One person didn't cause the recession, and the best a company can do is have enough financial cushion to ride it out. But a breach is preventable, and the buck stops with the CEO, so they should be held accountable.
legacy (Score:1)
I am still running HP-UX 10.20, along with a large pile of UNIX systems that the vendors abandoned long ago. I threw away Alpha DS10s last week, but certainly not all of them.
I'm holding onto an Itanium for a VMS guy. And if you think VMS is old, you should see our OS2200.
If that was going to burn, it would have been cinders long, long ago.
Re: (Score:2)
If the company loses money, it means the CEO didn't plan for it and therefore, didn't do his job.
Nonsense. You plan to survive a recession, not to profit during one. The only way to maintain profits is to preemptively cut back on staff and investment, which means you lose even more if the recession fails to happen, and there are more good years than bad years, so that is a poor strategy.
As they say on Wall Street: "Bears sound smart, bulls make money." Contrarian funds have historically been terrible investments. Shorties are usually losers.
Um... you absolutely plan to profit (Score:2)
Recessions are great business for the ultra-wealthy. Why do you think we have "Bull" and "Bear" markets? House always wins, and the ultra wealthy ar
Re: (Score:1)
You only get that profit as the recession ends, not during the recession. You are investing during the recession (when investment is cheap). Your income being small and your investment being large means you are not profiting during the recession.
I think you are interpreting the same line differently.
You *plan* during the recession to profit after the recession.
You don't plan to profit *during* the recession.
Re: (Score:2)
A cyber security breach would just mean they short a bunch of stock before the announcement, making them even wealthier. I have yet to see any real negative consequences for neglecting security, other than maybe paying a year's worth of Locklife in bulk as a PR measure.
Re: (Score:2)
A cyber security breach would just mean they short a bunch of stock before the announcement, making them even wealthier.
Well there's Equifax...https://www.marketwatch.com/story/equifax-executives-sold-stock-after-data-breach-before-informing-public-2017-09-07 so you aren't wrong
Re: (Score:2)
Agreed. Insider trading to a lot of C-levels is like smoking pot. Yes, it is technically illegal, but getting caught seems to be relatively rare.
Re: (Score:2)
Close...imho, it's more that they won't get fired for a recession (they can't blame you if everyone is affected). They might get fired due to a cyber security breach.
Re: (Score:2)
Yep. As per 'Capitalism run wild' they only care about themselves. If there's another recession they don't care, they've personally got money to burn, they'll be fine, and they don't give a damn about the rest of us plebians who are not part of The Rich.
Re:Pepperidge Farms Remembers (Score:4, Interesting)
In 2007, the crash was the result of repackaged bad mortgage debt traded like it was good debt.
The only thing close to that now is student debt. However, I would hope that the Universities would be held accountable for that since the cost inflation and the lack of suitable employment skills falls directly in their laps.
Re: (Score:2)
You might want to look into the car loans situation.
Re:Pepperidge Farms Remembers (Score:4, Insightful)
In 2007, the crash was the result of repackaged bad mortgage debt traded like it was good debt.
There are many more scenarios than just a debt crisis which could cause our next recession. Inflation hasn't been a problem even with significant stimulus, but the causes of inflation tend to lag and can be hard to fight so runaway inflation is still a legitimate concern. Corporate debt is over 50% higher as a percentage of GDP today than it was in 2007, caused by incredibly cheap interest rates, which can certainly cause small dips in the economy to have much larger ripple effects. Higher inflation which is generally combated with higher interest rates would exacerbate this problem. And then there are always trade wars, which we are already seeing on a very small scale without many responsible parties in power to combat if it gets out of control.
I'm not saying I think another great recession is likely, but there are certainly many potential causes of one on the horizon.
Re: (Score:2)
"It is not the school's fault if a student failed to learn while attending classes."
I suppose it depends on the content and rigor of those classes.
Re: (Score:3)
For your statement #1, there aren't many good options for you to advance your career without a college degree. America needs to enhance its vocational training to many white collar jobs and the jobs that may need specialized skills but not the particular rigors of a college degree.
For statement #2 Schools already try to hard to make sure patients pass college. (Basically due to lack of career options without a degree). And undergrad degree should actually really mean something, because a lot of students s
Re: (Score:2)
It's not like they enticed the students into a brightly lit, shiny room full of visions of a rosy future,
That is, in fact, how most operate. They widely market their school, provide tours, interviews with professors, etc. promising great things and a bright future if you just come to their University.
No money? No problem! Plenty of federal loans available! Just sign here!
I've seen it in action.
Both sides. CEC paid $500 million (Score:2)
Absolutely students have a responsibility to make decisions about what they study, where, at what cost. Spending $100,000 on a gender studies degree only makes sense if you have an extra $100,000 to spend on learning for leisure. WGU.edu makes sense if you don't have a bunch of spare cash.
ALSO the company who owns/owned several schools, Career Education Corporation, just agreed to not pursue payments in $500 million of student loans and to penalties in 48 states because the schools misrepresented the valu
Re: (Score:2)
In 2007, the crash was the result of repackaged bad mortgage debt traded like it was good debt.
That was the big cause. In addition, many of the same people who had the bad mortgages (as well as many who didn't) were drowning in debt. Multiple credit cards, most all maxxed out. multiple re-fi's based on inflated housing prices.
I knew it was coming the day I saw my first "Buy a million dollar house with monthly payments of 250 dollars!" ad on Yahoo. That was simple math and no way around it. Human lifespan, take home pay, and mortgage amortization. So simple a caveman could figure it out. So there
Re: (Score:2)
They are still subprime loans going out. But I think the next recession will probably be due to different problems. Mostly due to closing off borders and trade.
Current policies and actions seems to be cutting business off from a customer base (Other countries are avoiding US goods and services to avoid Tariffs, and looking for countries to partner with who have a better trade deals). This will not be a overnight thing, as it takes time to change vendors and find replacements, also early on some new local c
Re: (Score:2)
Hmm, other countries are avoiding US goods because the US is making noise about imposing tariffs on...imported goods?
That doesn't make any sense at all....
Note that the government can't really do anything to help recover from a recession. Or don't you remember the Great Depression (yeah, we stopped using that word afterwards, but a "recession" is just a depression by another name)? The only thing that pulled the world out of that one w
Re: (Score:2)
There may be a crash. When Joe Sixpack gets hit so hard and no safety net is available other than creating a GoFundMe, he will start paring down "luxury" items to the bone. Netflix will be replaced by BitTorrent, a music subscription gets replaced by a hard drive full of music files of unknown origin, and so on. The problem is that so many companies live by those monthly subscriptions, and when people go into survival mode, most of those will wind up being cancelled. For the most part, if people are loo
CEOs don't care about either one... (Score:2, Insightful)
In my experience working with C levels, they don't give a crap about either one.
Scenario 1: A massive cyberattack. All their source code, info on people, user accounts with decoded passwords, credit cards, payroll, etc., now are residing in a Lower Elbonian database public to the world. The C-levels short their stock, make the announcement that everything is hosed, laugh all the way to the bank, and toast the downed company on their new yachts. Insider trading? Not prosecuted these days.
Scenario 2: A
Re: (Score:3)
Also, the phrase "more worried than" doesn't imply that recessions aren't a worry,
Re: (Score:2)
There's always someone predicting some misfortune or windfall. If any one of these people were actually that good
There you go again, talking truth to stupidity. STOP that. If you count both the hits AND the misses, how to you expect Miss Cleo to meet her numbers this month -- with psychic powers at the roulette wheel or something?
She provides a service: comforting stupid people. When she gets it wrong the "stars were out of alignment" or something.
Re: (Score:2)
The public is more worried about cyber security in general. They don't want "their stuff" stolen and it brings bad press for any company. Unlike what you believe, most "big bad companies" pretty much live on the margin of life and death and a few percentages means the difference between making a small profit and either bankruptcy or hostile takeover. Most companies have to lend to make payroll every month, most companies have massive amounts of debt (including Netflix and the like).
Recession is not a worry
Re: (Score:2)
ITT: armchair C-suite wannabes give business advice to millionaires with decades of executive experience
This was a problem of basic math, and the actuarial tables. Pick which one you wish to refute, my dear coward.
Re: (Score:2)
If I were a CEO I would task the CIO/CTO to worry about Cyber Security, just make sure you have enough money set aside to help pay for their recommendations. But the CEO should be more worried about recessions. Because Recessions cut the number of customers, a cut in customers cuts profit and growth.
Re: (Score:2)
If I were a CEO I would task the CIO/CTO to worry about Cyber Security, just make sure you have enough money set aside to help pay for their recommendations. But the CEO should be more worried about recessions. Because Recessions cut the number of customers, a cut in customers cuts profit and growth.
One of the first things that should, but probably won't happen is the cyber security depratment needs to be turned into something other than a cost center.
Then there is another problem. While its easy to blame the minions, a tremendous number of breaches come from top levels.
The Chief cyber officer needs to be at the same level as the Chief Security officer, have the same level of impunity as a ship's surgeon, and be protected from retaliation - ie, can go into the CEO's or CFO's office and force the
Re: (Score:2)
Well of course (Score:3, Funny)
Even in a recession they still get their golden parachute, but a IT breach could reveal their porn browsing habits
Obviously (Score:3)
In a recession at least all of their competitors are feeling the pinch too. Sustaining competitive advantage is far more important than the temporary pain of a recession. A data breach and new competitors are much bigger concerns for any CEO with his/her head on straight.
Of course not (Score:3)
A recession will barely affect those at the top.
Cybersecurity risks hitting their assets, bank accounts, and tax haven shenanigans.
They are not worried (Score:3)
When their ass is on the line (Score:2)
This is what happens when government punishes people for allowing the lock on their back door to get picked instead of going after the actual criminals.
There's also a new "study" that says businesses are working about climate change "to a point". Maybe, but not in the way the radical environmentalist think. What they're really worried about is getting the sh*t kicked out of their expenses due to every increasing regulations making it impossible to stay solvent (see what I did there?).
Not in the UK they aren't (Score:2)
There is always a recession coming (Score:2)
Economies rise and fall; recessions happen every so often, so of course one will happen sooner or later.
Democrats really wanted one to hit last summer before the mid-terms, now they're hoping for one in late 2019 or mid-2020.
Worried enough to do something about it? (Score:2)
So if they're worried about cybersecurity, does that mean they'll actually pay more for cybersecurity? Somehow I don't see that happening.
Yes, cybersecurity spending increased 1000% (Score:2)
Yes, cybersecurity spending has increased perhaps 1000% over the last ten years. I've been doing cybersecurity work for twenty years. The first ten years, there was no money in it, but I enjoyed it. The last few years, my experience has become very marketable.
On Tuesday I talking to a guy at an OWASP meeting and mentioned his company has 50 employees in the cybersecurity department. They aren't a security company.
No shit Sherlock (Score:2)
The incentives are all wrong (Score:2)
Color me skeptical (Score:3)
Regulations (Score:2)
Absolutely correct. Which is why such matters always end up dealt with via regulations. And the fear comes from the fact they see the writing on the wall. Europe already has their GDPR. USA is next.
It's simple: Known vs. Unknown (Score:2)
So, with a recession, there are a few things. First, recessions are beyond the control of any one company. Even in 2007, the issue was "the banks" - nobody blamed Wells Fargo or Capital One explicitly, which meant that they could play hot potato and work together to get their bailouts. A security breach doesn't have the same luxury.
Next, while a recession is a predictable economic cycle with well-understood means of remediation, a digital breach could mean anything. Even if it was something as innocuous as
Also, GDPR for USA just around the corner (Score:2)
Europe already got their privacy rules, so that's a known now. In USA, it's still an unknown. In Asia regions, no-one gives a shit about privacy so the execs don't fear it yet.
nonsense (Score:2)
They are worried that their shareholders want them to talk about cybersecurity, rather than recession.
I work in cybersecurity. It's a huge market. That consists of 40% snake-oil, 40% faking compliance to some standard, law or other requirement and 20% of actual security. I'm mostly interested in the 20% and on some days I hate myself for it because I could make so much more money selling bullshit to the gullable or assurance of on-paper compliance to managers.
If they actually took security seriously, they w
Situations change too.... (Score:2)
I mean, as one example? I work for a company that uses a lot of freelance workers on a project basis, as needed. They're required to have company email addresses so their correspondence looks like it comes from our company. But otherwise, they're more or less on their own to work with their team of people that brought them on-board for whatever they're doing.
When the business was smaller, the people in I.T. pretty much met/interacted with all of these freelancers, so they were familiar with the sound of the
Re: (Score:2)
Yes, that kind of thing. I fix this fuck on a daily basis and it all goes back to the same two problems: a) nobody thought about security early and b) everyone is stretched too thing and under time and budget pressures.
Hiring two more people for your IT will do more to security than buying the latest snake-oil tech product.
Recessions are largely equalizers. Cyber Security (Score:2)
Cyber Security is not part of the normal ebb and flow. Cyber Security is about loss prevention, not profit maximization. Cyber Security doesn't create profit or mobility. Cyber Security doesn't enable users to be more productive. It is simply
Pssst (Score:2)
Many of you are focusing on the wrong reasons, IMO (Score:2)
Yes, companies are VERY worried about cybersecurity matters right now. But it's not so much because they're afraid of the bad press if they get hacked. (Like people here keep posting -- security breaches of people's credit cards and personal info have become so commonplace, it's assumed that every valid credit card number in use in America is leaked out in one collection or another of data from the hacks. You card isn't getting misused because hackers don't have it. Rather, it's just the fact that nobody ha
the same CEO's that pick the cheapest vendors and (Score:2)
the same CEO's that pick the cheapest vendors and out source to low bidders?
Well, duh (Score:2)
Are they potentially held liable for a recession? No chance.
Are they potentially held liable for a a cyber attack? Well, the writing's on the wall [corporatec...sights.com] that they could very well be held responsible if they can't show that they took reasonable steps to prevent it. The noose is getting tighter, Europe already is moving towards liability laws for data breaches and security blunders if the CEO can't show that he didn't just blatantly ignore any kind of security warnings from his infosec department (or shows his negl