Board members often lack technical expertise and may not fully grasp cyber risks. On the other hand, CISOs are more accustomed to interfacing with IT staff. This is understandable; the board is responsible for guiding high-level decision-making. They rarely become involved with the details, leaving implementation plans and technical audits for the CISO to handle. The solution is effectively integrating the CISO into the C-suite and forming a collaborative relationship with the board. By using … More

The post Evolving conversations: Cybersecurity as a business risk appeared first on Help Net Security.