Security leaders are seldom participating in corporate drills: SEC
By CS Staff
By CS Staff
A recent practitioner poll by research firm Security Executive Council (SEC) found that security leaders are seldom participating in corporate drills and tabletops that deal with cyber incidents, supply chain disruptions or civil disturbances.
The poll asked the question, “What exercises/drills/tabletops does security participate in or plans to in the near future?” While more than half of surveyed security professionals participate in active shooter and natural disaster drills and tabletops, fewer than one-third are involved in domestic violence/suicide drills, and fewer than 20% in drills for supply chain disruptions and loss of key personnel.
SEC says while it’s possible that practitioners are not being invited to the table for certain types of incident drills, it’s also possible respondents’ companies are not running exercises on these types of incidents.
“We have seen some security organizations are creating drills or tabletops for incidents receiving a lot of attention in the media,” said Bob Hayes, managing director of the SEC. “Security practitioners should weigh the probability of certain incidents happening at their organization. For example, while active shooter is horrific, the FBI reports that in 2018 there were 27 incidents. Compare that to the OSHA’s estimate that approximately 2 million American workers are victims of workplace violence each year.”
Full results of the poll are posted at https://www.securityexecutivecouncil.com/spotlight/?sid=31716
The SEC’s next Security Barometer quick poll focuses on organizations’ top current security risk issues. To take the quick poll, visit https://securityexecutivecouncil.com/survey/375735.