Changing Role Of The CISO: A Holistic Approach Drives The Future
DARKReading, Wednesday, September 20,2023
The CISO's role has grown far beyond supervising Patch Tuesday to focus on prevention and response and to cover people, processes, and technology.
In the modern enterprise, the responsibility for security culture, technology, and posture is the purview of the chief information security officer (CISO).
This role isn't an easy one. While senior business leaders and boards of directors understand that cybersecurity is a critical risk, they face challenges in determining how it compares to other factors such as credit, liquidity, and market risk. It's no longer enough to identify risk; now security leaders must be armed with information that allows them to justify investments, work hours, and importantly - budget.
Let's examine the various ways CISOs can support themselves to better deal with these priorities, including why I believe a more holistic approach to evaluation and prevention is the path forward.