In the guidance issued by the Cybersecurity and Infrastructure Security Agency (CISA) in April 2021 on securing one’s supply chain, a portion of the guidance was dedicated to the threat vector posed to entities during their design phase.
The question COOs should be asking their CISO’s is: “How can I make my product and processes the most secure and operate within acceptable risk parameters for the company and our customers?”
[ Learn the 5 key qualities of successful CISOs, and how to develop them and 7 security incidents that cost CISOs their jobs. | Sign up for CSO newsletters. ]In many companies, both large and small, operations and production operate separately from information security. Some CISOs lack the recognition that the latter is the support element to the former. This dichotomy often creates friction and abrasive relationships when the situation calls for the exact opposite.
To read this article in full, please click here
Support the originator by clicking the read the rest link below.
