Cybersecurity

Chief Information Security Officer

Acronym : CISO

The CISO drives the organization's cybersecurity strategy: defining the security policy, coordinating risk and incident management, and reporting the company's exposure to leadership.

Why it matters

A clearly identified CISO role, even part-time in a smaller company, prevents security ownership from being diluted across several people with no real accountability.

Concrete example

The CISO of an 80-employee company spends 20% of their time on security and reports major risks to the executive committee every quarter.

Related notions

Cybersecurity governanceRisk managementSecurity committee

Assess your organization's maturity on this topic

Start the diagnostic
Back to glossary