- Chief information security officers/chief security officers have traditionally managed cybersecurity from a technical standpoint.
- However, cybercriminals have taken it up a notch in the previous few years, rendering organizational resilience in the face of consistent cyberattacks inefficient.
- Consequently, security leaders need to evolve in their roles to ensure cybersecurity and defense are core business functions aligned with business objectives.
Chief security officers (CISOs/CSOs) are in a pickle. Cybersecurity executives are facing judicial heat if two high-profile cases are any indication. The U.S. government’s legal proceedings against SolarWinds CISO Tim Brown and former Uber CSO Joe Sullivan, who was convicted, may have cybersecurity executives rethinking their responsibilities.
The role of the traditional CSO encompasses all things cybersecurity – the technical side. They are expected to uphold the patronage of an organization’s response during a cyber incident.
According to the Securities and Exchange Commission (SEC), this approach is precisely what needs to change when dealing with the contemporary threat actor. Case in point, the proceedings…
