#ISC2Events: Supply Chain Security is a Multifaceted Challenge
Orgs must know range of factors when managing supply chain risk, says (ISC)2's CISO, Jon France
Stay updated on CISO news and insights. Expert coverage on Chief Information Security Officer roles, strategies, and cybersecurity leadership trends.
Search across headline titles and summaries.
Background for this topic.
CISO is the senior executive responsible for an organization’s information security strategy and governance. This role involves overseeing risk assessments, security architecture, and policy enforcement to protect sensitive data and critical systems. The CISO coordinates between technical teams and business units to ensure security measures align with organizational priorities and regulatory requirements.
In practice, the CISO must manage risks from insider threats, supply chain vulnerabilities, and targeted cyberattacks by prioritizing security controls and monitoring emerging threats. Their decisions influence how effectively an organization detects and responds to incidents, maintains secure configurations, and integrates security into business processes. Effective CISOs balance technical expertise with strategic oversight to reduce exposure across diverse attack surfaces.
Orgs must know range of factors when managing supply chain risk, says (ISC)2's CISO, Jon France
The company makes cybersecurity performance management software to quantify how well cyber-risk solutions are actually working.
Trendy restaurant tables now feature QR codes that lead to menus, payment apps, and CISO nightmares.
Communication is a vital skill for any leader at an organization, regardless of seniority. For security leaders, this goes double. Communicating clearly works on multiple levels. On the one hand, security leaders and CISOs must be able to communicate strategies clearly – instructions, incident response plans, and security policies. On the other, they must be able to communicate the importance of
Our Vectra Masked CISO series tackles some of the biggest issues in security and how to overcome them Advertorial Security must be tried, tested, and tested again. It’s become easier than ever for cybercriminals to find stealthy new ways to gain access to and navigate laterally across systems, exploit gaps in hybrid workflows, or hijack cloud accounts to gain access to a target. It is vital that every CISO can offer a clear picture of how their security is really holding up against the latest tactics, techniques, and procedures. However, all too often I’ve seen my fellow CISOs fall into a cycle of preparing annual penetration tests of point systems to be “compliant,” which in fact only makes them sitting ducks just waiting for a breach to occur.…