In an interaction with ETCIO, Rohit Kachroo, CISO at Indiabulls Group, shares his thoughts on various aspects of cybersecurity.
What does the board expect from CISOs? What's your bucket list for modern CISOs to avoid hackers and damage to reputation?With the growing dependence on technology and greater compliance obligations, the role of CISO has become a buzzword in the boardroom. Beyond protecting the organization against cyber threat, the CISOs’ contribution encompasses helping the organization identify and meet business objectives and deliver on strategy. Though primary role of CISO is making a secure environment for business activities, he has to implement security measures that facilitate rather than obstruct business while finding a workable balance that protects information assets and shields the company from unnecessary risk.
I believe the bucket list for modern CISOs should be — first, understand and embrace the organizational mission statement and business strategy, and include them in the organization’s complete business risk landscape and corresponding opportunities being pursued.
Second, create a secure but flexible environment in which to address board-level concerns and related risks, and establish a common understanding. Third, embrace the board’s approach to risk management. Fourth, deliver assurance through clear reporting of both risk and security performance in a manner that supports meaningf ..
Support the originator by clicking the read the rest link below.
