Many organizations are looking for Chief Information Security Officers (CISOs) who possess both technical expertise and strong leadership abilities. The role of a CISO has evolved over the years and has become even more complex with the recent shift to remote work and the increasing use of cloud technology. CISOs now have to deal with new threat vectors and risks associated with employees working from unsafe locations and using insecure networks.
One of the main challenges faced by new CISOs is the need to understand and navigate an organization’s existing data governance and security systems. Without a clear understanding of these systems, it can be difficult for CISOs to effectively protect sensitive data and mitigate security risks. Additionally, new CISOs often face a lack of resources and technology to support their role, which can increase their stress levels and put the organization at risk of data theft and financial loss.
The first 90 days of a new CISO’s role are critical for establishing a solid security foundation and avoiding costly mistakes. During this time, CISOs should prioritize the following steps:
1. Implement measures to ensure data protection: It is important for new CISOs to locate and classify all sensitive data across the organization and ensure that it is protected from various threats. Data protection technology focused on perimeters and endpoints may not be sufficient, so implementing a Data Security Posture Management (DSPM) platform can help CISOs identify vulnerabilities, simplify compliance, and prioritize risks.
2. Develop a system to detect and respond to potential breaches: CISOs should focus on data and insider threats and implement tools and processes to secure files, folders, drives, and permissions. This includes insider risk-management tools, automatic detection of unauthorized activity, and a dedicated incident response team to proactively monitor and investigate threats.
3. Ensure robust security measures: CISOs need to have enhanced monitoring capabilities for external and guest users, privileged account monitoring, and the ability to identify risky configuration changes. Stale identities should be regularly removed to minimize security risks.
4. Establish procedures for responsible data handling: CISOs should put in place procedures and reporting mechanisms to demonstrate that data is being classified and handled appropriately. This includes ensuring that sensitive data is labeled correctly, access is granted or revoked as necessary, the data lifecycle is managed, and any unauthorized or suspicious activity is quickly flagged and addressed.
5. Maximize the value of tools and technology: Investing in best-in-class tools and technology is not enough. CISOs should focus on widespread adoption and usage to maximize the value of these tools. Adopting a user-friendly platform that ensures optimal adoption with little to no learning curve can help drive adoption and improve overall security.
The first 90 days are crucial for new CISOs to establish a strong security foundation and gain confidence as change agents within their organizations. By prioritizing data protection, developing systems for breach detection and response, ensuring robust security measures, establishing responsible data handling procedures, and maximizing the value of tools and technology, new CISOs can effectively mitigate security risks and protect sensitive data.
It is important to note that the views expressed in this article are solely those of Maheswaran Shamugasundaram and do not necessarily reflect the opinion, belief, or position of The Cyber Express. Readers are encouraged to gather information from multiple sources and perspectives to make their own informed decisions.