Now is the time for CISOs to step out from their technical ivory tower. By approaching cyber risk with a business risk mindset, they can bridge the gap between security needs and enterprise objectives.
Conquering Cyber Risk Management as a Transformational CISO (informationweek.com)
It’s impossible for a CISO to know what new technology will emerge next that allows bad actors to infiltrate their systems, but they can ensure that a company operates in compliance with all the latest policies and standards and that security is a priority, which will prepare an enterprise for an inevitable attack.
The critical need for independent CISOs in modern organizations | Security Info Watch
A materiality assessment model unveiled this week by the risk-management organization FAIR Institute aims to quantify those losses with an assist from the FAIR Materiality Assessment Model open-source framework.
FAIR Insitute wants to quantify just how much a cyberattack costs | Cybersecurity Dive
CISOs and CIOs must keep themselves and their organizations up to date with the evolving technology and security landscapes, which means they often need to spearhead change-driven projects. Driving organization-wide change is challenging in any scenario, but even more so if CIOs and CISOs don’t have regular communication and buy-in at the board level.
6 Pain Points for CISOs and CIOs and What to Do About Them (informationweek.com)