The New CISO: Rethinking The Role
DARKReading, Tuesday, March 19th, 2024
Rising cybersecurity demands are changing the role of the head security officer. CISOs need to make a list, check it at least twice, and document every step.
Companies recognize the importance of cybersecurity and increasingly incorporate it as an asset in their operational strategies. But by mixing security and operations, organizations may be diluting the core mission of the chief information security officer (CISO): to protect the assets of the company from unwanted attacks.
Dating back to the 1990s, the role of CISO was more technical and IT-focused. Security was black and white and departments strived to eliminate anything deemed a risk. Over the past 20 years, however, the job has changed. CISOs face more risks than can be resolved, are expected to balance security with operational capability, and must convince leaders to invest in protection.