Accountability for security grew to become clearer as soon as cyber efficiency confirmed up in C-suite objectives, metrics, and annual incentives. This gave the CISO extra affect. Conversations about weak software program growth, phishing threats, and vendor due diligence hit more durable when framed when it comes to budgets, bonuses, and model status reasonably than simply technical threat.
Because the function evolves, the CISO wants to stay entrance and middle in threat administration discussions. There’s a chance for extra consideration of cyber threat outdoors of the knowledge security crew, identical to a whole lot of monetary threat is managed outdoors of the finance crew.
What are your plans in retirement to proceed advising corporations on staying progressive and strengthening cybersecurity?
Meg Anderson: I’m presently advising just a few corporations—not by formal engagements, however by mentoring cybersecurity leaders. It’s been extremely rewarding to assist them navigate profession choices and management challenges. It’s much less about telling them what to do and extra about serving to them suppose by the “why” and “how.”
