Security Will Play A Larger Role In the Boardroom, And CSOs And CISOs Become More Pervasive
Businesses will increasingly add a chief security officer (CSO) or chief information security officer (CISO) to their executive suite as a sign that they are taking security seriously, said Ankur Laroia, strategic solutions leader at Alfresco.
CISOs will see increasing investment and budget to purchase tools due to the array of recent high-profile incidents, said Lein of Resolve Systems. But with those added funds comes the onus to demonstrate measurable results, so CISOs will turn to analytics, reporting and attack simulations to demonstrate success, according to Lein.
CISOs need to help executives and board members understand ROI, cost-benefit analysis, and security program tradeoffs by articulating business risk versus business value, said Brendan O'Connor, security CTO at ServiceNow.
Demonstrating the value of security as it relates to regulatory compliance, potential lost revenue, customer relationships, legal liability, intellectual property and brand protection is vital, O'Connor said.