Security Frameworks Require High-Level Collaboration
- High-level internal collaboration is necessary for a business to successfully adopt a security framework.
- The work of improving your security is never done. A CISO must always stay up to date on new threats.
“When you have a structure that says the CEO is responsible for the security framework, the CISO should also sit at the C level.”
According to Oren Ben Shalom, the success of a security framework depends on who owns responsibility for it within the organization. “When you have a structure that says the chief executive officer (CEO) is responsible for the security framework, the chief information security officer (CISO) should also sit at the C level,” Ben Shalom explains. “Otherwise, the CISO’s voice doesn’t carry enough weight within the company, and security may be overlooked.”