← Cybersecurity Alphabet Soup

CISO

Chief Information Security Officer

governanceeasy

The senior executive responsible for an organization's information security strategy, program, and risk posture. The CISO sets policy, manages the security team and budget, reports risk to the board, and answers for the response when incidents occur. Regulations like the SEC's disclosure rules and NYDFS requirements have made the role increasingly accountable to regulators as well.

Sources

More in governance