10 Tough Questions CEOs Are Asking CISOs
CEOs today are prepared with better questions than 'Are we secure,' and chief information security officers had better be ready to answer.
So What?
As CISOs increasingly command time with the board and executive management, they are also expected to speak in business language and make the case for security investment in business terms. In other words, don’t enter a meeting ready to spew security jargon and expect less security-minded management to understand why certain risks matter.
"Security as a standalone concept is useless and means drastically different things to different people," says Gigamon CISO Jack Hamm."Being ready to articulate the risk, probability, and impact to the business is the only normalized way we can speak of security."
(Continued on next page)
Joan Goodchild is a veteran journalist, editor, and writer who has been covering security for more than a decade. She has written for several publications and previously served as editor-in-chief for CSO Online. View Full Bio
2 of 11

More Insights