Will the CISO /CSO become the fall person in the next 12 months?
Will the CISO /CSO become the fall person in the next 12 months?
In theory the chief information security officer is meant to be accountable for being an;
- Advisor
- Strategist
- Enabler
- Champion
The CISO should be Identifying, understanding, translating and ensuring that the companies security capability is as resilient and as ready as possible. Engaging with the various teams working towards a common and often moving goal.
But ultimately a CISO will only be as effective as the team around them and the resources available to them.
The chief information security officer is NOT responsible for
- Fixing IT issues
- Being superhuman
- Being a scapegoat
- Putting lipstick on a pig.
If the CISO’s strategic roadmap and advice isn’t taken seriously and ultimately implemented then what is the point in hiring someone into that role if you know they are set up to fail? There is no point going through the motions of tick box security.
Worse still, sweeping security under the carpet for another day will never end well.
If you know you need to improve your security posture but don’t know where to start and discretion is key, there are number of options available and I’m here to help. Chris.Holt@dclsearch.com 07884666351