July 23, 2014 By Christopher Burgess 2 min read

Ensuring the security, availability and authenticity of the various data sets that a company creates or is entrusted with by its partners and customers should be top-of-mind for a chief information security officer (CISO) focused on cyber security risk. It’s a broad brush indeed, and for many smaller companies, a CISO is a luxury that they simply cannot afford. However, this does not obviate the need to have the CISO’s responsibility and accountability fall within the remit of a senior company executive.

Cyber Security Risk

That said, does the role of the CISO require technical or business acumen? In the recent keynote address at SC Magazine’s Toronto Congress, IBM’s Global CISO Joanne Martin highlighted the need for information technology professionals to be prepared to deliver actionable insights into threats to their respective company’s leadership and boards. According to Martin, at IBM, the top cyber security risks identified by her team are security risks that accompany the continued use of machines that use Windows XP, as it remains embedded in parts of IBM’s systems. Microsoft ceased to provide support to Windows XP on April 8, 2014.

Crown Jewels

Couple the Windows XP migration effort with the continued avalanche of breaches affecting customers, patients and company internal data, and every CISO has his or her hands full. These issues aren’t the type that executives and boards of directors sit with quietly. Boards of directors have sat up and noticed as more and more companies have been pilloried following a breach or cyber security incident that puts customers, partners or the company itself at risk.

When the existence of a cyber security risk has been recognized by the board, the CISO is asked, “Do you know what constitutes the ‘crown jewels‘ to the company and what the damage will be to the company should they be lost, stolen or otherwise compromised?” Crafting a cyber security risk mitigation strategy to protect data is a challenge, and it is important to know where the most valuable information lies. If you are a new (or established) CISO and don’t have this answer, you now have your task.

Malicious Code and Sustained Probes

For those who have followed the prognostications in the annual security reports issued in the first half of 2014, CISOs are facing two major types of incidents within the cyber attack continuum: malicious code and sustained probes. These are the same issues identified in IBM’s annual report issued in July 2013. The challenge for CISOs will be processing the extraordinary amount of data fed to them from the near-constant probing of their company’s infrastructure while also maintaining a level of service to their constituency to conduct unimpeded business. The reality is that, once penetrated, the more advanced entities will burrow deep into the infrastructure in hopes of a long-term engagement via a snatch-and-grab compromise. Therefore, the challenge for the CISO will not only be monitoring the outside coming in, but also the inside going out and any anomalous activities within the intranet of the company.

Overall, the role of CISOs is a mixed bag of skills. They need to earn their place at the leadership table. This is possible through their successful ability to articulate business risks and execute mitigation methodologies designed to address those risks. While CISOs may always be focused on creating solutions that assure the security, availability and authenticity of the company’s data and “crown jewels,” their measure of success will be evidenced by the continued trust of the company’s partners and customers.

More from CISO

Overheard at RSA Conference 2024: Top trends cybersecurity experts are talking about

4 min read - At a brunch roundtable, one of the many informal events held during the RSA Conference 2024 (RSAC), the conversation turned to the most popular trends and themes at this year’s events. There was no disagreement in what people presenting sessions or companies on the Expo show floor were talking about: RSAC 2024 is all about artificial intelligence (or as one CISO said, “It’s not RSAC; it’s RSAI”). The chatter around AI shouldn’t have been a surprise to anyone who attended…

Why security orchestration, automation and response (SOAR) is fundamental to a security platform

3 min read - Security teams today are facing increased challenges due to the remote and hybrid workforce expansion in the wake of COVID-19. Teams that were already struggling with too many tools and too much data are finding it even more difficult to collaborate and communicate as employees have moved to a virtual security operations center (SOC) model while addressing an increasing number of threats.  Disconnected teams accelerate the need for an open and connected platform approach to security . Adopting this type of…

The evolution of a CISO: How the role has changed

3 min read - In many organizations, the Chief Information Security Officer (CISO) focuses mainly — and sometimes exclusively — on cybersecurity. However, with today’s sophisticated threats and evolving threat landscape, businesses are shifting many roles’ responsibilities, and expanding the CISO’s role is at the forefront of those changes. According to Gartner, regulatory pressure and attack surface expansion will result in 45% of CISOs’ remits expanding beyond cybersecurity by 2027.With the scope of a CISO’s responsibilities changing so quickly, how will the role adapt…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today