The 2022 Security and Exchange Commission's cyber security proposals are expected to kick in the next few weeks. However, are the boardrooms ready?  Worryingly, some  reports suggest that the majority should be having last minute panic attacks. In this edition of  Reimagining Cyber Extra, Rob Aragao and Stan will be addressing discussing what corporate boards and CISOs need to be doingSome key quotes:"There's this  vernacular that gets thrown around from a technology perspective that doesn't always jive to what the business or a board member for that matter is understanding""The rule is designed to compel boards that haven't been taking cybersecurity seriously to do so. But I do think it's also created some trepidation or some concern between the board of directors and those that are in the front lines, the CISOs or the directors of information security. I think it puts some tension on those relationships. And some uncertainties as far as who's going to actually do that reporting effectively""The role of the CISO is going to change even further than what we've seen. As an example, the CISO reports to the CIO in some cases, and in other cases it reports to other parts of the business. This is going to push it really, I would think, for most organizations to completely rethink where the CISO reporting structure is." "I hope [it brings] a  greater understanding on the stresses and the pressures on the CISO and the information security organization and what they have to deal with every day.  Hopefully the board will give them the resources they need. I'm not saying that they aren't funding security. Many times they are, but they need to take the actions to help build in that resilience into the organization. And hopefully they get enough awareness of the topic area and the understanding of the vocabulary to be able to have true conversations about where to best fill in those gaps."Follow or subscribe to the show on your preferred podcast platform.Share the show with others in the cybersecurity world.Get in touch via [email protected] As featured on Million Podcasts' Best 100 Cybersecurity Podcast and Best 70 Chief Information Security Officer CISO Podcasts rankings.

Ver todos los episodios