Does your organization use vCISOs or CISOs?

Team & Organizational Design

vCISO31%

CISO68%

lock icon

Please join or sign in to view more content.

850 PARTICIPANTS
4.6k views2 Upvotes5 Comments
Sort By:
Oldest
VP of Global IT and Cybersecurity in Manufacturing6 years ago
Depends on the business and how its setup, for most places the CISO reports directly to CEO or board members. VCISO is an outsourced security program which interacts with an internal liaison resource.
1 1 Reply
Director Certifications in Education5 years ago

Ideally, the CISO should report to the CEO, but many organizations the CISO reports to the CIO. This reporting structure is flawed, because the CIO may control the CISO's budget.

Senior Technology & Management Consultant in Retail5 years ago
No organization can claim that Security is not important to them. But the same argument holds good for other horizontal concerns such as performance, reliability, privacy, compliance etc. So do we have a separate role for taking care of each of them? Obviously not. All horizontal concerns are the joint responsibility of everyone in the organization and hence a virtual role is mostly preferable. I have seen organizations where the CISO has a parallel ops team, engineering team and testing team. In short he/she runs a parallel organization that is not so closely connected with engineering. I don't think that is desirable.

Having said that, there are organizations where compliance, security et all constitute a full time job. In these organizations it is good to have a full time CISO who also may have other responsibilities such as compliance, regulation, privacy etc. This person may have a band of experts. But it is important that this person is also supplemented by a virtual team of engineers who are schooled in security, privacy etc. Otherwise, they tend to get more "academic" or even worse become policy cops. No one wants that!
4
Director Certifications in Education5 years ago
When someone is held accountable, you tend to get better results or service. The vCISO does work for some organizations based on the type of business they do.
VP of IT in Software5 years ago
The challenge with vCISOs or what I equate to CISO-as-a-service is the lack of accountability. It is still a consultancy service by and large.
3

Content you might like

What's a greater concern for returning to the office? Comment how you are prioritizing...

People & LeadershipStrategy & ArchitectureCloud+29 more

Human Factors (fears, mental health, physical spacing)85%

Technical / IT Factors (on-premise tools, pivoting back away from remote)14%

3.7k views3 Upvotes2 Comments

What are the fundamental leadership capabilities that are needed for an era of exponential technology and AI innovation?

Disruptive & Emerging TechnologiesCulture & ValuesMentoring & Coaching+3 more
Director, Experience Design in Educationa year ago
I think Alivin Toffler said it best: "The illiterate of the 21st century will not be those who cannot read and write, but those who cannot learn, unlearn and relearn."

The most important attribute, then, is ...read more
31 3 Replies
Read More Comments
193.8k views172 Upvotes152 Comments

Engineering leaders: have you ever had a manager decide that leadership was the wrong choice for them? Was there an easy path for them to move back into engineering work and still advance their career within your organization?

EngineeringTalent Management & PerformanceTeam & Organizational Design
CTO in Mediaa month ago
I recommend companies ensure a growth track that allows 'seniors' to progress down either an individual contributor (IC) or leadership route. These paths can be paired in many ways:

A senior engineer may advance to ...read more
2
Read More Comments
419 views2 Upvotes3 Comments

Do you have any dedicated resources for vulnerability patching?

Threat & Vulnerability ManagementSecurity Strategy & RoadmapTeam & Organizational Design

Yes - one person46%

Yes - multiple people46%

No7%

View Results
3.1k views

What strategies or initiatives have you found effective in promoting gender diversity within your organization?

People & LeadershipTeam & Organizational DesignIT Strategy & Roadmap+1 more
VP, IT Delivery and Technical Business Supporta month ago
Our company was recognized with the 2023 Tech Council Essential PA's Women in Tech Ally Award, which acknowledges outstanding achievements in being an ally to women in tech. This recognition is a testament to the effectiveness ...read more
Read More Comments
1.2k views3 Comments