Why Today's CISOs Must Embrace Change
DAKReading, Thursday, July 27,2023
After recently serving as the chief information security officer (CISO) for the state of Maryland, I know, firsthand, the vital role cybersecurity can play in helping the government deliver critical services to its constituents and the risk to their lives if those services are disrupted.
Today's CISOs, both commercial and public sector, are facing a number of challenges.
First, the No. 1 challenge is the workforce shortage. There aren't enough qualified and well-trained personnel to fill the demand. Tools can become forced multipliers and bridge the capability gaps inside an organization.
The second challenge is the inability to tell a compelling story that supports continuing funding of security tools. As a CISO, you need to be able to go to a board or an executive and offer a "Let me tell you why this investment is good for the organization" that resonates with the person that hears the story. Metrics around every tool, every program, and more are key elements to be shared.