The Changing Role Of The CISO 

Uploaded on 2024-04-03 in NEWS-Cybersecurity News, JOBS-Careers, FREE TO VIEW

A CISO, or Chief Information Security Officer, is a senior-level executive who oversees an organisation's information, cyber, and technology security. The CISO's responsibilities include developing, implementing, and enforcing security policies to protect critical data. Now, Check Point Software and IDCcollaboration with IDC have published a joint survey titled: “The Changing Role of the CISO”. 

The Check Point Software study reveals a strategic shift with security decision-makers moving from a stance of fear to a growth mindset, aligning cyber security strategies with business goals. 

This comprehensive analysis not only highlights concerns over economic slowdown and budget constraints, but also showcases how CISOs are becoming increasingly business aware, indicating a significant evolution from traditional roles to strategic business enablers. Frank Dickson, Program Vice President, Cybersecurity Products at  IDC, commented "The survey clearly demonstrates the dynamic and evolving role of CISOs in today’s digital-first organisations. Amidst economic pressures and rapid technological changes, CISOs are not just security leaders but crucial drivers of business innovation and growth."

The survey reveals key insights:   

  • Economic and Budgetary Pressures:   With the looming economic slowdown, CISOs are under pressure to deliver effective cybersecurity without compromising on business growth initiatives. Organisations are looking to modernise IT infrastructures as a foundation for digital transformation, pointing to a need for security strategies that support rather than hinder progress. 
  • Security as a Business Enabler:   The survey underscores a transformation in the role of CISOs, who are now more business-aware than ever. This shift is characterised by a move from traditional fear-based security postures to growth-oriented strategies that align with overall business goals.  This evolution is supported by Check Point's emphasis on simplifying and consolidating security solutions to address cost and management inefficiencies effectively. 
  • The CIO-CISO Relationship:   Highlighting the complex dynamics between CIOs and CISOs, the survey indicates both alignment and divergence in priorities. While 94% of CIOs express satisfaction with CISO functions, there is an evident need for better collaboration to align IT and security priorities, particularly around business resilience and digital initiatives. 
  • Digital Transformation and Security Initiatives:   A significant focus on modernising IT to meet new security challenges is evident, with 65% of organisations planning to allocate 1-9% of their IT/security budgets to generative AI in the next 18 months. This investment reflects the critical role of CISOs in steering IT modernisation to achieve better business outcomes and highlights the importance of environmental sustainability in these efforts. 
  • Growth Mode vs. Economic Concerns:   Despite economic concerns, the survey reveals that organisations remain in growth mode, focusing on significant and fast growth through digital initiatives. This indicates a pivotal shift for security teams from a fear-based approach to adopting a growth mindset that enables digital initiatives and business expansion. 

According to Kristin Owens, VP Corporate Marketing at Check Point , the survey "illuminates the evolving landscape where economic concerns, digital transformation, and the need for greater security efficacy converge."

Image: Ideogram

You Might Also Read: 

Bridging The Gap Between Cybersecurity & Business Goals:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

 

« Universities Are Stepping Up Training For More Front-Line Workers
Beware Scammers Imitating Bank Websites »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Secure Identity Alliance (SIA)

Secure Identity Alliance (SIA)

The Secure Identity Alliance is dedicated to supporting sustainable worldwide economic growth and prosperity through the development of trusted digital identities and the adoption of secure eServices.

CyberForce Program - US Department of Energy

CyberForce Program - US Department of Energy

The Department of Energy’s (DOE) CyberForce Program is a workforce development program that seeks to inspire and develop the next generation of cyber defenders for the energy sector.

DataArt

DataArt

DataArt is a global technology consultancy that designs, develops and supports unique software solutions. Areas of activity include software security testing.

Hexnode MDM

Hexnode MDM

Hexnode MDM is an award winning Enterprise Mobility Management vendor which helps businesses to secure and manage BYOD, COPE, apps and content.

CyberASAP

CyberASAP

CyberASAP provides expertise, knowledge and support to convert academic ideas into commercial products in the cyber security space.

Reed

Reed

reed.co.uk is a leading job site in the UK, providing a full online service for anyone looking for a new job.

MSPAlliance

MSPAlliance

MSPAlliance is the world’s largest industry association and certification body for cloud computing and managed service professionals.

Peraton

Peraton

Peraton provides innovative solutions for the most sensitive and critical programs in government today, developed and executed by scientists, engineers, and other experts.

SubRosa Cyber Solutions

SubRosa Cyber Solutions

SubRosa Cyber Solutions solves its clients’ most tenacious information security, risk and compliance challenges through a multitude of information technology services and expertise.

Raman Power Technologies

Raman Power Technologies

Raman Power Technologies focus on bringing value and solving business challenges through the delivery of modern IT services and solutions including cybersecurity.

ECS Ethiopia

ECS Ethiopia

ECS Ethiopia provides Ethiopia’s leading institutions with top cyber-security expertise and technology to enable them to overcome risks and market barriers enabling them to grow their business.

Otto

Otto

Stop Client-Side Attacks. Plug otto into your application security suite and protect your supply chain.

Thoropass

Thoropass

Thoropass (formerly Laika) helps you get and stay compliant with smart software and expert services.

Clango

Clango

Clango employs an identity-centric approach to optimizing your cybersecurity investment while minimizing risk.

Cyber Guru

Cyber Guru

Cyber Guru is an effective cybersecurity awareness training platform, enabling organisations to increase their resistance to cyber-attacks by changing employee behaviour.

Acuvity

Acuvity

Acuvity is the most comprehensive AI security and governance platform for your employees and applications. Secure your GenAI adoption with confidence.