Have you ever "whitewashed" a real security risk?

People & LeadershipSecurity & GRC

Yes, on my own10%

Yes, because I was asked33%

No, but I have been asked17%

No, and never been asked39%

lock icon

Please join or sign in to view more content.

1127 PARTICIPANTS
7.2k views1 Upvote13 Comments
Sort By:
Oldest
Board Member, Advisor, Executive Coach in Software4 years ago
My view is that we all need to be careful of the "coaching" we may get and understand if we are being coached on how to manage the message around risks to other so a productive discussion can occur or is someone "coaching" to massage the message to "white wash it" or "water it down" so it doesn't appear so bad ...  I have had both experiences
1
Board Member, Advisor, Executive Coach in Software4 years ago
WOW - 76% have either white washed risk or have been asked to ...
1 1 Reply
Director of Information Security in Energy and Utilities3 years ago

I agree it seems very unrealistic. Most likely people didn't quite get the actual question of what it means to "whitewash". Im fairly certain its 76% who have done it to a degree where you needed to help close a security assessment/complete business deal.

Director of Product Management in Software4 years ago
How should you respond when asked to white-wash a security risk?  How does the CISO protect themselves from unfairly taking the blame and being held liable?  check out:  https://www.pulse.qa/post/how-respond-asked-to-white-wash-security-risk-how-ciso-protect-themselves-unfairly-taking-blame-being-held-liable
1
Director of Information Security in Energy and Utilities3 years ago
this is a dangerous territory.  Make sure you check in with your self ethic dept.
CIO in Services (non-Government)3 years ago
Never
2

Content you might like

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

Applications & PlatformsCloudData & Analytics+15 more
Head of Enterprise Architecture MERCK Group in Healthcare and Biotecha year ago
Strategy & Architecture
Read More Comments
39k views5 Upvotes34 Comments

What is your primary deciding factor in adopting enterprise search?

Strategy & ArchitectureCloudEnd-User Services & Collaboration+26 more

TCO19%

Pricing26%

Integrations21%

Alignment with Cloud Provider7%

Security10%

Alignment with Existing IT Skills4%

Product / Feature Set7%

Vendor Relationship / Reputation

Other (comment)

View Results
5.7k views3 Upvotes1 Comment

I am increasingly having to present to our board and it’s not always the best experience. Do you have any advice on how best to approach a company board that is not technical at all?

People & Leadership
Chief Cloud Officer in Software6 years ago
My board experience has primarily been with board members that are not technical. The approach I take is to "translate" technical bits into business impact information. It seems many non-technical board members care most ...read more
64 3 Replies
Read More Comments
177.4k views169 Upvotes153 Comments

How do you think AI will disrupt business across industries? Add to my list: 1. Content creation 2. Photos and video production 3. Basic coding and debugging 4. Strategic analysis to be highly complimented 

Disruptive & Emerging TechnologiesData & AnalyticsPeople & Leadership+1 more
Principal in Finance (non-banking)a year ago
Almost too many to list. I believe original content — written, photos, and videos — are all but certain to become widely synthetic. Perhaps people will do some humanizing of the content but most of it will be artificially ...read more
5 1 Reply
Read More Comments
175.5k views40 Upvotes97 Comments

What do you think will happen to your career in 2024?

People & LeadershipJobs

Job will become more stressful32%

Job-related stress will remain stable59%

Job will become less stressful8%

Other (please comment)1%

View Results
2.4k views1 Upvote2 Comments