Word of the Day: CISO

Word of the Day Daily updates on the latest technology terms | July 2, 2018 CISO (chief information security officer) The CISO (chief information security officer) is a senior-level executive responsible for developing and implementing an information security program, which includes procedures and policies designed to protect enterprise communications, systems and assets from both internal and external threats. The CISO may also work alongside the chief information officer to procure cybersecurity products and services and to manage disaster recovery and business continuity plans. The chief information security officer may also be referred to as the chief security architect, the security manager, the corporate security officer or the information security manager, depending on the company's structure and existing titles. While the CISO is also responsible for the overall corporate security of the company, which includes its employees and facilities, he or she may simply be called the chief security officer (CSO). CISO role and responsibilities Instead of waiting for a data breach or security incident, the CISO is tasked with anticipating new threats and actively working to prevent them from occurring. The CISO must work with other executives across different departments to ensure that security systems are working smoothly to reduce the organization's operational risks in the face of a security attack. The chief information security officer's duties may include conducting employee security awareness training, developing secure business and communication practices, identifying security objectives and metrics, choosing and purchasing security products from vendors, ensuring that the company is in regulatory compliance with the rules for relevant bodies, and enforcing adherence to security practices. Other duties and responsibilities CISOs perform include ensuring the company's data privacy is secure, managing the Computer Security Incident Response Team and conducting electronic discovery and digital forensic investigations. CISO qualifications and certifications A CISO is typically an individual who is able to effectively lead and manage employees and who has a strong understanding of information technology and security, but who can also communicate complicated security concepts to technical and nontechnical employees. CISOs should have experience with risk management and auditing. Many companies require CISOs to have advanced degrees in business, computer science or engineering, and to have extensive professional working experience in information technology. CISOs also typically have relevant certifications such as Certified Information Systems Auditor and Certified Information Security Manager, issued by ISACA, as well as Certified Information Systems Security Professional, offered by (ISC)2. Quote of the Day "Security professionals are feeling the effects of today's fast pace of change as they contend with constantly evolving privacy and security regulations, technologies and business strategies." - Mary K. Pratt Trending Terms security event operational risk security awareness training data privacy CSIRT ISACA Learning Center Herjavec: Cybersecurity investment now a priority for CEOs, boards Looming regulations, changing consumer expectations and expanding threats are forcing company leaders to pay closer attention to data protection. Robert Herjavec, CEO of the Herjavec Group and star of NBC's 'Shark Tank,' explains how the trends have changed the C-suite's view of cybersecurity investment. Accenture's Tammy Moskites explains how the CISO position is changing Speaking at RSA Conference 2018, Accenture's Tammy Moskites discussed her views on how the CISO position is changing and the continuing challenges CISOs face. Identify gaps in cybersecurity processes to reduce organizational risk Cyberthreats continue to plague modern organizations, but identifying and mitigating gaps in data protection processes can go a long way to reducing organizational risk. Learn expert advice about how to close those gaps in this feature. CISO survey paints a grim picture: Weak staff, breach fears A CISO survey shows 67% of respondents are worried that their company is more likely to suffer a data breach or cyberattack this year. CISO soft skills in demand as position evolves into leadership role In this Q&A, hear from cybersecurity industry veteran Joan Pepin why CISO soft skills have become essential as security executives are increasingly asked to take on leadership roles. Writing for Business Today's CISO needs interpersonal skills in order to _________ others in the boardroom to support their cybersecurity vision. A. convince B. persuade Answer Stay in Touch For feedback about any of our definitions or to suggest a new definition, please contact me at: mrouse@techtarget.com Visit the Word of the Day Archives and catch up on what you've missed! FOLLOW US About This E-Newsletter This e-newsletter is published by the TechTarget network. To unsubscribe from Whatis.com, click here. Please note, this will not affect any other subscriptions you have signed up for. TechTarget, Whatis, 275 Grove Street, Newton, MA 02466. Contact: webmaster@techtarget.com Copyright 2018 TechTarget. All rights reserved.