eBay CISO On Managing Long-Term Cybersecurity Planning And ROI
HelpNet Security, Tuesday, January 7th, 2025
In this Help Net Security interview, Sean Embry, CISO at eBay, discusses key aspects of cybersecurity leadership. He shares insights on balancing long-term strategic planning with immediate threat response, evaluating the ROI of new technologies, and addressing employee cybersecurity fatigue.
As a CISO, how do you balance long-term strategic cybersecurity investments with immediate tactical threat response?
The most important word here is 'balance', and effective cybersecurity programs need to have a longer-term strategy but be nimble enough to deal with an ever-changing threat environment. One can't exist without the other.
For longer term planning, we maintain a running three-year roadmap we update annually that accounts for changes to the threat and risk landscape, new business priorities and new technologies and capabilities.