The Chief Information Security Officer (CISO) is a relatively new position in the C-suite. It’s around 25 years old or younger, depending on who you ask. But it is only in the past 10 years that the role has grown in importance, likely due to the surge in cyber breaches over the past decade. What does a CISO do and what skills are required?
Beyond technology to soft skills
CISO roles and responsibilities aren’t as clear-cut as some of the more established C-suite roles. This is in large part due to the overlap (or competition, as some might say) with other, similar roles. Chief security officer, chief information officer, and even chief technology officer or chief information risk officer could play competing roles. To further complicate matters, there is no industry standard reporting structure for the CISO position. In some cases, the CISO reports directly to the CEO. In other cases, they report to a CIO.
Some of it …