Chief Information Security Officer

Posted by ctart002 on

A Chief Information Security Officer has many responsibilities and decisions to make. They need to decide what type of training and technology the company needs to have an effective cybersecurity department. With the budget they have they need to make sure the correct amount of the limited resources goes to each in an appropriate manner.

Training

There are many rules and decisions a CISO must make when thinking about how they run their department. According to Forbes.com, a key function of the CISO is to create a security framework that is correct for the systems that their company has (Gupta, n.d.). This is a crucial step to take so that your employees know how to correctly act when there is an incident. With this being so important, you could understand why a CISO would delegate a large share of the budget to training the employees in the correct manner. Cyber Security technology can only protect the company to a certain point. The employees being trained correctly is what is going to be the lifesaver at the end of the day.

Technology

While the people are an important part of the equation, cybersecurity technology is something that a CISO is going to have to evaluate on behave of the company. According to CISCO.com, a saying in the cyber security field is People, Process and Technology (What Is a CISO? Chief Information Security Officer, n.d.). A CISO needs to make sure their running the correct and up to date technology. The CISO should focus on this, but they should use more of the budget to focus on training.

Conclusion

CISO is an extremely critical position to the security of a company. Many of the decisions that the officer makes will directly result in the cyber security fitness of the company. Training should take precedent in the budget over technology. The people are the ones that need to know what to correctly do when the company is faced with adversity.

References

Gupta, D. (n.d.). Council Post: The Role Of A CISO In Building A Modern Cybersecurity Culture. Forbes. Retrieved April 1, 2023, from https://www.forbes.com/sites/forbestechcouncil/2021/08/17/the-role-of- aciso-in-building-a-modern-cybersecurity-culture/?sh=36407e7625e3

What Is a CISO? Chief Information Security Officer. (n.d.). Cisco. https://www.cisco.com/c/en/us/products/security/what-is- ciso.html#~whyhire-a-ciso

Leave a Reply

Your email address will not be published. Required fields are marked *