6 Things CISO’s Want Corporate Directors To Focus On

Zukis: Many CISO's were front and center during the height of the pandemic, and they've gotten more boardroom exposure than they've ever had. What's been the most significant adjustment from both perspectives? 

The role of the CISO has never been more appreciated by the boardroom because of Covid. As companies moved to work-from-home practices, hackers worked overtime to capitalize on the chaos, and the CISO was front and center with many corporate boards.
Because of this, the role of the CISO has evolved from a cost-center to a critical business value protector. While many directors have received a crash course in cybersecurity during Covid, their long-term approach to cyber risk needs to continue its evolution.
Rishi Tripathi, CISO of the NBA, recently shared his advice with me for corporate directors and what CISO's want from their boards as cybersecurity risk oversight continues to develop.

1.You hear the phrase "protecting the crown jewels" a lot regarding cybersecurity, and that boards need to understand where the value is within their digital business. Have there been any changes to that?
2.Talk about your view on risk management. What do directors need to know that's maybe different than how they've traditionally looked at risk.
3.There are no shortages of cybersecurity crises that are in the news. As a CISO, what do you want to be hearing from your board about crisis management?
4.The cybersecurity skills shortage is also a frequent headline, and the latest number I saw is that there's a shortage of over 3,500,000 cybersecurity practitioners. What do you expect from the boardroom on this issue?

Read more: https://www.forbes.com/sites/bobzukis/2020/08/09/6-things-cisos-want-corporate-directors-to-focus-on/#6e3be05a12bb

Tags 🏷
#cissp #cciso #cism #isc2 #isaca #malware #cyberattack #threats #ransomware #cyberrisks #iot #itsecurity #cloud #cloudsecurity #infosecurity #securitymanagement #itriskmanagement #awarenesssecurity #top10vulnerabilities #lgpd #privacy #darkweb #cybersecurity #cso #ciso #infosec #hacker #itriskmanagement #ciberseguranca #cibercrime @forbes