How to have an impact on the Board as a CISO / CSO
Board members have a rough time of it making sure that companies are well managed and that the #leadership do right by both the staff and the shareholders. Therefore, when you as #CSO / #CISO present to the Board make sure you message is clear, concise and in English. Paint a clear picture of the Security Risk the business is facing, the mitigate actions you have taken and the residual risk.
When you ask for investment in your projects come with facts, how much (Opex, Capex), How long, What if we do, what if we don’t, ROI, Risk Reduction, the list goes on. It is your job to give them the facts. It is the board’s job to weigh the risk and respond accordingly. Don’t bring acronyms and techie speak to the boardroom.