Soft Skills Every CISO Needs to Inspire Better Boardroom Relationships
Now more than ever, CISOs have an opportunity to impact business strategy and change the culture of their organization.
Cybersecurity strategy guides how organizations prioritize risks, protect critical systems, and prepare for incidents, recovery, and resilience.
Search across headline titles and summaries.
Background for this topic.
Security strategy is the long-term direction an organization uses to manage information-security risk and support its business objectives. It sets priorities for protecting systems and data, assigns decision-making authority, defines acceptable risk, and guides investment in controls, skills, architecture, and suppliers. A sound strategy turns risk assessments and threat intelligence into measurable security outcomes rather than a disconnected list of tools.
For practitioners, strategy determines which assets and attack paths receive priority in vulnerability management, how privacy and regulatory obligations shape data handling, and what capabilities must exist for detection, containment, recovery, and testing. It should account for dependencies such as cloud services, software providers, identities, and legacy systems, while establishing review points as technology, threats, and business operations change. Effective governance links these choices to owners, budgets, metrics, and documented exceptions.
Now more than ever, CISOs have an opportunity to impact business strategy and change the culture of their organization.
'Oxygen of Publicity' Helps Intimidate Victims and Recruit Affiliates, Experts WarnSeeking to maximize profits no matter the cost, ransomware groups have been bolstering their technical prowess and psychological shakedowns with a fresh strategy: attempting to control the narrative. Experts are warning security researchers and journalists to beware being co-opted.
Senate Confirms Career Naval Officer, Former Head of NSA to Serve in Critical RoleHarry Coker is now the second permanent national cyber director after the Senate voted 59-40 to confirm President Joe Biden’s pick to lead the Office of the National Cyber Director. In his new role, Coker will be tasked with implementing the administration’s national cybersecurity strategy.
In an increasingly digital world, no organization is spared from cyber threats. Yet, not every organization has the luxury of hiring a full-time, in-house CISO. This gap in cybersecurity leadership is where you, as a vCISO, come in. You are the person who will establish, develop, and solidify the organization's cybersecurity infrastructure, blending strategic guidance with actionable