CIOREVIEW >> Identity Governance and Administration >>

Shujinko Documents the Challenges of CISOs

By CIOReview | Tuesday, September 22, 2020

Shujinko has announced the results of a survey of North American CISOs documenting the challenges which are faced by the security.

FREMONT, CA: Shujinko, a leader in automated audit preparation, has announced the results of a survey of North American CISOs documenting the challenges which are faced by the security and compliance professionals while preparing for a wave of upcoming audits. Furthermore, the study, which is a joint effort among Shujinko and Pulse, discovered that calendars for security and compliance audits had not been changed despite COVID-19. Still, the pandemic is creating problems for the teams as they work remotely. Therefore, CISOs have the task of preparing more than three audits on average in the next 6-12 months. But they are still struggling with inefficient tools, restricted budgets and personnel, and ineffective manual procedures. Furthermore, the outcome also shows that migration to the cloud is considerably increasing the scale and difficulty of audit preparation by obs1oleting old techniques and approaches.

According to Scott Schwan, Shujinko CEO and co-founder, “this survey clearly shows that CISOs at major companies are caught between a rock and hard place when it comes to security and compliance audits over the second half of 2020 and want automated tools to help dig them out. Unfortunately, they’re simply not able to find them.” “Teams are cobbling together scripts, shared spreadsheets, ticketing systems and a hodgepodge of other applications to try to manage, resulting in inefficiency, lengthy preparation and limited visibility. More than two-thirds of CISOs are looking for something better.”

Key Research Findings:

• Most widespread audits are for HITRUST, HIPAA, and PCI DSS

• CISOs are planning for an average of 3.3 security compliance standard audits over the next six to twelve months

• CISOs urgently want more automation

• CISOs have inadequate visibility into the audit process

• CISOs are concerned about doing more with less

• Two-thirds of CISOs dislike their current toolset

• Audit processes do not fit a cloud development model

• Responses were offered by 100 senior security executives at the company’s headquarter in North America