The State of the CISO

September 20, 2019

The Chief Information Security Officer has traditionally reported to the CIO because the job has been regarded as primarily technical. However, the current epidemic of breaches coupled with privacy regulations like the GDPR and CCPA has made cybersecurity a tier-1 business risk. Some organizations still regard the CISO as a technical manager but more sophisticated organizations understand how important the role is to reducing risk throughout the organization to maintain brand value.