Having a CISO in your organization is essential. I’ll go over why today.
20 years ago, organizations typically had a director of IT security, which was believed to be the highest level needed for cyber security. However, in 2017 and beyond there will be a greater need for a CISO. Studies are showing that cyber security is actually the No. 1 board member concern.
That being said, unlike 20 years ago when companies only had a director of IT security, today we see the majority of organizations have a CISO. The CISO is usually at a peer level and reports to the chief risk officer or to the CFO.
You should consider adding a CISO to your board of directors.
CISOs not only protect a company from a breach, but are very active in risk management and setting up a disaster strategy. They handle the question, “If something bad happens to our company, how are we going to respond in a public setting?”
There are actually two examples of how this impacted our market recently. First, Target had a massive data breach within the last two years of consumer financial information, or debit and credit card information. Second, many people believe Sony was hacked by North Korea which resulted in their systems being down for 24 hours.
A breach in cyber security could cause millions of dollars in damage to an organization so it’s incredibly important to have a CISO.
If you have any further questions on this topic or if you have any other questions, please feel free to reach out to me. I look forward to hearing from you!
