IT managers must understand how initiatives related to the information security program affect the business side of the organization.
With 94 percent of CISOs worried about application security, it's worth asking: What makes the other 6 percent so confident?
In addition to responding to threats in progress, crisis leadership involves rehearsing various responses to prepare for a data breach.
Many organizations are changing the CISO reporting structure to reflect growing influence of IT over other departments and domains.
Shifts in the cybersecurity and business landscapes will introduce many additional changes to the ever-evolving role of the CISO in 2017.
Too much charisma can make for ineffective cybersecurity leadership. CISOs should encourage IT employees to challenge their policies and decision-making.
Organizations can improve their ability to enforce security policies and better serve business initiatives by shuffling the security org chart.
Despite the rapid expansion of third-party risks, a recent survey revealed that many companies lack the cybersecurity leadership to respond effectively.
CISO complacency can lead to anxiety and ambiguity, which can erode team morale and cause IT departments to miss important details with no accountability.
Findings from the Ponemon Institute's "2016 Cyber Resilient Organization" study suggest that many organizations are unprepared to respond to a cyberattack.