CISOs’ roles have taken them beyond what’s expected of security professionals, providing them with new challenges and new opportunities
The increasing importance of emotional intelligence and other skills required to work with different stakeholders are placing new demands on Chief Information Security Officers (CISOs). However, it’s also creating opportunities for CISOs to become leaders of their organizations, according to a new report from cyber security provider F-Secure, in conjunction with Omnisperience.
HR Technology News: Jitterbit’s George Gallegos Joins More Than 1,600 CEOs In Unprecedented Commitment To Advance…
Traditionally, CISOs’ roles were treated as technical roles first, with secondary importance placed on non-technical skills. However, a series of in-depth interviews conducted for the report with CISOs in the US, UK, and other European countries, suggests that this idea is quickly becoming obsolete.
“For companies, the technical aspects related to cyber security risks have become indistinguishable from other business risks. It just doesn’t make sense to treat attacks as only an IT or cyber security problem if they can potentially cost companies thousands or hundreds of thousands of dollars due to downtime, extortion payoffs, stolen intellectual property, etc.,” said The AES Corporation’s CISO Emeritus Scott Goodhart, who was interviewed for the report. “In a way, technical-only CISOs have become a thing of the past and replaced by a role that’s explicitly relied on to address risk in a much broader, holistic way for organizations.”
HR Technology News: Energage Names Cross Country Healthcare A Winner Of The 2021 Top Workplaces USA Award
Two-thirds of CISOs interviewed understood the increasingly important role emotional intelligence plays in helping them understand, empathize, and negotiate with people inside and outside their organization – a key requirement given their expanding responsibilities.
And three quarters of CISOs interviewed for the report indicated that their roles have changed from a pure focus on network risk to cover every aspect of technology now being deployed, with the changes being most pronounced to CISOs working in healthcare, manufacturing, and retail.
“Today, CISOs are expected to understand and mitigate a wide variety of risks, and then relay that information – regardless of how technical it is – to everyone, from boards and company employees to external security professionals, regulators, and even law enforcement,” said F-Secure’s Tim Orchard, Executive Vice President, Managed Detection and Response. “The shift to relying more on `soft’ skills began years ago. However, the pandemic highlighted how CISOs that proactively work with people inside and outside their organizations can be leaders for their companies.”
HR Technology News: Fifth Third Executive Vice President Joins National Urban League Board Of Directors