Who should have the ultimate responsibility for cyber security - the CIO or the CISO?

Strategy & ArchitectureTeam & Organizational Design
25.2k views3 Upvotes19 Comments
Sort By:
Oldest
Chief Security Officer in Software6 years ago
CISO
2 7 Replies
CIO in Software6 years ago

CISO unless the CIO has a very strong background in Cyber Security

CTO in Software6 years ago

CISO

lock icon

Please join or sign in to view more content.

By joining the Peer Community, you'll get:

  • Peer Discussions and Polls
  • One-Minute Insights
  • Connect with like-minded individuals
CTO in Software6 years ago
The entire company, including the Board
6 1 Reply
CxO and Startup Advisor in Software6 years ago

This is by far the best answer here...

1
Chief Security Officer in Software6 years ago
I’ll add to my original comment. If a company is mature enough then I still think the CISO, but in a lot of cases, depending on who has the most business/technology responsibility, it is usually the CTO or CIO. At my last 2 companies it has been the CTO.
CTO in Software6 years ago
I don't understand the context around a company being mature enough, or not, for security to be a first-class citizen. That will never be solved by reporting structure, and security, as I at least previously implicitly said, needs to be embedded into the entire DNA of a company. Compliance != Security
2
Chief Security Officer in Software6 years ago
Completely agree Mike and I think that is what all security pros strive for, but that isn’t always the reality. However, some organizations just haven’t figured out the priority of security.
1

Content you might like

What have been your experiences with using OData with Java and/or .Net?

Applications & PlatformsDatabaseEngineering+1 more
243 views2 Upvotes

What is your primary deciding factor in adopting enterprise search?

Strategy & ArchitectureCloudEnd-User Services & Collaboration+26 more

TCO19%

Pricing26%

Integrations21%

Alignment with Cloud Provider7%

Security10%

Alignment with Existing IT Skills4%

Product / Feature Set7%

Vendor Relationship / Reputation

Other (comment)

View Results
5.7k views3 Upvotes1 Comment

What are the fundamental leadership capabilities that are needed for an era of exponential technology and AI innovation?

Disruptive & Emerging TechnologiesCulture & ValuesMentoring & Coaching+3 more
Director, Experience Design in Educationa year ago
I think Alivin Toffler said it best: "The illiterate of the 21st century will not be those who cannot read and write, but those who cannot learn, unlearn and relearn."

The most important attribute, then, is ...read more
31 3 Replies
Read More Comments
193.8k views172 Upvotes152 Comments

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

Applications & PlatformsCloudData & Analytics+15 more
Head of Enterprise Architecture MERCK Group in Healthcare and Biotecha year ago
Strategy & Architecture
Read More Comments
39k views5 Upvotes34 Comments

Which aspect of running a software business do you find most challenging?

EngineeringApplications & PlatformsDatabase+1 more

Acquiring new clients and projects20%

Keeping up with evolving technologies and testing methodologies52%

Building a strong reputation and establishing credibility in the industry53%

Adapting to changing client demands and expectations40%

Ensuring effective communication and collaboration with clients and development teams21%

Developing effective pricing strategies and staying profitable14%

Other (please specify)

View Results
1.5k views