What are the most important areas for a CISO to focus on?  When speaking to Aman Sood, it becomes clear that the job of a CISO encompasses every aspect of a business.  Aman is the Head of Cyber Security with Jimdo, a website building platform that helps small businesses start, grow, and ultimately thrive online.  Aman is also the Cyber Security Group Chairman for ISITC Europe CIC, a non-profit industry body and a catalyst for collaborative innovation within the capital markets. If ever there was someone at the front end of the cyber threat, it is Aman.

Philip Ingram: The role of the modern CISO is changing. Based on your experience, what are the essential skills a CISO should have now?

Aman Sood: The role has evolved into becoming both an art and a science. Long gone are the days of “textbook” security to justify decisions. The breadth and depth of domain expertise remains a given, however, soft skills such as persuasive influence, active communication and compelling storytelling are essential to help drive the security agenda. To become truly recognised as a business enabler,

CISOs of today must be able to forge effective partnerships across the business, balancing the organisation’s needs with security goals.

PI: When looking to rejuvenate, or build a new security program, what three or four areas would you tell organisations to focus on?

AS: If I had to provide a ‘one-size-fits-all’ answer, I’d suggest one key area of a fortified security program is the accurate identification and management of enterprise assets. Although this may sound simplistic, it is often an extremely challenging responsibility.

Broadly speaking – and this obviously varies greatly for different organisations – I’d suggest increasing the focus on the areas in which are the weakest. Several factors can (Read more...)