Businesses are becoming more aware of cyber risk as a component of business risk "and need chief information security officers to be part of board-level governance conversations," said Nick Kakolowski, research director at IANS Research.
With security incidents "a part of nearly every evening news cycle, the board of directors needs to demonstrate that they are taking those considerations seriously and addressing them," Steffen said. "For many organizations, one of the easiest and most effective ways of doing this is to elevate the CISO to a position of responsibility and authority on the board."
A recently released report on CISO board readiness conducted by IANS Research in collaboration with Artico Search and The CAP Group, found that less than half of the CISOs stand out as board candidates. "First, build soft skills," Kakolowski said. "Boards are close-knit working teams of highly talented and successful people, where the conversations are often nuanced and require a high emotional intelligence to navigate."
A key component of communication is knowing your audience, said Larry Whiteside, CISO at RegScale, a provider of governance, risk and compliance tools, and a board member of several organizations including the Cloud Security Alliance, Ember River and the University of South Florida. CISOs also need to understand risk to speak to a board. "Their understanding of risk must expand outside of just technology," Whiteside said. "There are so many issues surrounding compliance and regulations that are evolving on a regular basis, and a CISO must understand the risk those mandates impose on their company."
Business Business Latest News, Business Business Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Source: FoxNews - 🏆 9. / 87 Read more »