While most of the media understandably covers the search for a new President of the United States, we couldn’t help but notice another job going begging at the White House: CISO. Which got us to thinking…
There’s no denying that the title of ‘Federal Chief Information Security Officer, Executive Office of the President of the United States of America’ has a ring to it. With great job titles come great responsibilities, and this is no exception.
“The Federal CISO establishes the direction of Federal cybersecurity policy and strategy (in accordance with direction provided by the Federal Chief Information Officer), to include management practices, budget priorities (in coordination with Office of Management and Budget Resource Management Offices), and for overseeing implementation across the entire government.”
Of course, most every large organisation that takes security seriously already has a CISO. With the notable exception of one that we can think of: UK plc.
Isn’t the UK government long overdue a CISO itself? That’s the question we have been asking the IT security industry, and the myriad responses have resoundingly agreed that the answer is yes. Which should surprise nobody – after all, anything that hardens our national cyber-security posture through policy and implementation would have to be a good thing.
Vidur Apparao, CTO at Agari, is in no doubt that the threat from cyber-criminals is getting more serious, so the Government certainly needs to raise the bar. “The key way to do this is to hire a cross-departmental CISO,” Apparao said, speaking to SCMagazineUK.com. “The UK government axed its cross-departmental Chief Information Officer role a couple of years ago, so creating a CISO role is all the more of an urgent need.”