Technocrat vs. Orchestrator- What is the Best Approach to Take to Excel as a CISO?
The CISO is an increasingly key role in modern organizations, reconciling the needs of a wide range of stakeholders to secure data and systems, ensuring their availability, security and integrity. Different organizations have different approaches, from hands-on technocrats to administrative maestros orchestrating their tech talent. But some skills, personal characteristics, and approaches are constant and fundamental to excel as a CISO. These include a deep understanding of the needs of the business; leading security culture within the organization, including recruitment, understanding and management of the security team; identification, validation and deployment of appropriate security solutions; strategic planning for incident response, remediation, and ongoing resilience; and ability to communicate technological issues and requirements to the board in a business context.
We will be discussing these requirements with Yohann Bauzil, CISO at Airbus OneWeb Satellites. We will cover the following points:
- What is the primary role of a CISO (Vs Cyber Security Director) ?
- Should a CISO be more of a technocrat or an orchestrator?
- Where do you start your mission?
- How do you establish a security culture in the organization, and within the security team?
- What should be the priorities of a CISO at a strategic level?
- "Internal organization", how does the CISO report to the structure?
- Self-assessment via diagnostics and maturity analysis, a must?
- How should a CISO deal with the board of directors - what should you communicate?