Industry Insights

Survey Highlights Insider Cyber Risk Focus Among CISOs

5 min Read

Ed Amoroso

Founder and CEO - Tag Cyber

Minneapolis, MN: In June 2021, TAG Cyber, a New York-based research and advisory firm that helps enterprise teams rationalize and optimize their security vendor portfolio, partnered with Code42, a Minneapolis-based cyber security company focused on Insider Risk Management, to host an event.

Many great insights, lessons, and conversations came out of that event, including a survey of thirty chief information security officers (CISOs). The goal was to understand their viewpoints on insider risk as an intense threat to their enterprise. Interestingly enough, a majority of the CISOs surveyed reported insufficient current protection in this important aspect of information security.

“We asked each of the CISOs to answer a pair of simple questions,” explained Katie Vosbeek of Code42. “The first addressed how intense they view the insider risk in their enterprise, and the second addressed how well they felt they were doing.” Over two thirds of those surveyed reported a score of seven or greater (on a scale of one through ten) about the intensity of the risk.

“This was an interesting result,” explained Dr. Edward Amoroso, CEO of TAG Cyber, “especially since the CISOs represented such a wide range of industry sectors and company sizes. Seeing such a clear majority of answers highlights how important it is for organizations to identify a good means for addressing the risk.”

In addition, over two-thirds of the CISOs surveyed reported that they were not pleased with their current insider risk solution, reporting scores of four or lower on the numeric scale. “This result underscores our view at Code42 that a new approach is needed to prevent data leaks ” said Vosbeek. “That’s why we have built a 5-step practical framework to mitigate insider risk for innovative, collaborative, cloud-based organizations.”

To learn more about the Insider Risk Management framework, please visit:

Ed Amoroso

Dr. Ed Amoroso is currently Chief Executive Officer of TAG Cyber LLC, a global research and advisory company that supports enterprise cyber security teams and commercial security vendors around the world. Ed recently retired from AT&T after thirty-one years of service, beginning in Unix security R&D at Bell Labs and culminating as Senior Vice President and Chief Security Officer of AT&T from 2004 to 2016. He is the author of six books on cyber security and dozens of major research and technical papers and articles in peer-reviewed and major publications.