The law should bring about punishments for serious data breaches that expose consumers to possible losses of data even as CEOs must be held ultimately responsible for such breeches.
This was according to results of a survey of security professionals taken last March by the IT security solutions vendor, Websense Inc.
A press statement by the Austin, Texas-based vendor said the survey sample size consisted of 102 IT security professionals from 15 countries who attended as delegates to the recently-held e-Crime Congress in London.
The sample included security professionals from government and the private sector along with senior managers responsible for risk, audit and compliance.
Of those surveyed, 98% said legal sanctions should be taken against serious breaches and 70% believed the CEO would have to take command responsibility for such breaches.
Among the punishments recommended by those surveyed were fines (65%), mandatory disclosure (68%) and compensation for those affected (55%).
Another 16% of security professionals surveyed advocated arrest and jail sentence for the CEO and board members.
Sign up for CIO Asia eNewsletters.