Explain the role of the CISO in the organization to ensure that a risk-based strategy
Discussion
.
Respond to two colleagues (BELOW): (Half a page each and please, provide each reference separately)
Discussion Topic
Many organizations today are faced with a need to perform internal risk assessments to identify gaps and opportunities for improvement of services. Explain the role of the CISO in the organization to ensure that a risk-based strategy is considered but not limiting to the business need.
Post from colleague 1
Good afternoon everyone,
The role of the chief information security officer (CISO) in an organization is one that often sits among the executives near the top of the company or organization. The broad goal of the CISO is to make sure that information and data security of an organization is conducted and maintained, there are times when the name changes though from that of CISO to sometimes the vice president of security, and while the names may be used interchangeably the role is one of the most important.
Primarily the CISO is in charge of all data security this can include policies and procedures as well as conducting triage after an attack happens. The CISO is also in charge of specifying access to those who need it, and those who don’t make sure that they cannot access what they don’t need to while also making sure that internal threats are minimal to the data. While being at the top of the totem pole the CISO may not be as hands-on as some of the technicians the role is still expected to have anywhere between 7 – 12 years of IT experience, and a bachelor’s degree minimum in a related IT field. While also having a number of years in management, and depending on where the CISO is expected to work there can also be expected to understand things like NIST, HIPAA, and other regulations.
Fruhlinger, J. (2019, January 14). In What is a CISO? Responsibilities and requirements for this vital leadership role. Retrieved from https://www.csoonline.com/article/3332026/what-is-a-ciso-responsibilities-and-requirements-for-this-vital-leadership-role.html
Post from colleague 2
The Role of CISO in Risk management
The Chief Information Security Officer (CISO) role is very important and vital to any organization. The CISO focuses on protecting the company’s information, assets and technology. Due to the increasing threats from cyber actors, there is a need to be concerned with the security of every organization (IT systems). The CISO is responsible for implementing strategies to protect organizational sensitive data in compliances with regulatory bodies that govern security as well as managing risks that are associated with the processing of data, thus making the CISO position focus on risk management more than ever (Walsh, K. 2018).
The ever-changing roles of the CISO includes:
1. The CISO is focused on protecting the organization from external threats that try to gain access into the network systems, security protocols should be updated and maintained.
2. The CISO’s role also includes the protection against internal threats, which involves training and education of staffs, multi-factor authorizations and role specifications be implemented.
3. The CISO is tasked with the creation of critical systems, networks and data incase of any breach.
4. The CISO is also tasked with continuous organizational system monitoring in identifying and mitigating threats.
5. The CISO is required to establish appropriate strategies in managing threats to aid business continuity and incident
References:
Walsh, K. (2018) What is the CISO’s Role in Risk Management? Reciprocity. Retrieved from https://reciprocitylabs.com/what-is-the-cisos-role-in-risk-management/
Lynch, K. (2018). The CISOs Role in Risk Management. CTO vision.com. retrieved from https://ctovision.com/the-cisos-role-in-risk-management/
Collepals.com Plagiarism Free Papers
Are you looking for custom essay writing service or even dissertation writing services? Just request for our write my paper service, and we'll match you with the best essay writer in your subject! With an exceptional team of professional academic experts in a wide range of subjects, we can guarantee you an unrivaled quality of custom-written papers.
Why Hire Collepals.com writers to do your paper?
Quality- We are experienced and have access to ample research materials.
We write plagiarism Free Content
Confidential- We never share or sell your personal information to third parties.
Support-Chat with us today! We are always waiting to answer all your questions.