Liability Fears Damaging CISO Role, Says Former Uber CISO
Former Uber CISO Joe Sullivan says CISOs are thinking about themselves rather than the bigger picture due to the risk of personal liability
Stay updated on CISO news and insights. Expert coverage on Chief Information Security Officer roles, strategies, and cybersecurity leadership trends.
Search across headline titles and summaries.
Background for this topic.
CISO is the senior executive responsible for an organization’s information security strategy and governance. This role involves overseeing risk assessments, security architecture, and policy enforcement to protect sensitive data and critical systems. The CISO coordinates between technical teams and business units to ensure security measures align with organizational priorities and regulatory requirements.
In practice, the CISO must manage risks from insider threats, supply chain vulnerabilities, and targeted cyberattacks by prioritizing security controls and monitoring emerging threats. Their decisions influence how effectively an organization detects and responds to incidents, maintains secure configurations, and integrates security into business processes. Effective CISOs balance technical expertise with strategic oversight to reduce exposure across diverse attack surfaces.
Former Uber CISO Joe Sullivan says CISOs are thinking about themselves rather than the bigger picture due to the risk of personal liability
The Cycode report draws from a survey of 500 US CISOs, AppSec Directors and DevSecOps team members