Intelligent CISO Issue 49 | Page 43

Tightening up vigilance and promoting a security-first culture across every department and job role will keep the hackers at bay . up vigilance and promoting a security-first culture across every department and job role will keep the hackers at bay .
EXPERT OPINION

Tightening up vigilance and promoting a security-first culture across every department and job role will keep the hackers at bay . up vigilance and promoting a security-first culture across every department and job role will keep the hackers at bay .

Aligning your cybersecurity strategy to an acceptable framework
Increased security doesn ’ t happen overnight . It ’ s a long-term strategy , which involves not only expert technology but also the values and integrity of company workers to develop a robust platform .
It ’ s a great starting point for the CISO to identify and share with the board how advanced the organisation currently is in terms of control maturity . This will help to develop a plan to achieve higher levels of maturity over time .
At a national level , the UK ’ s National Cyber Security Centre ( similar to The National Institute of Standards and Technology ( NIST ) in the US ) works to make the UK the safest place to live and work online . The Cyber Assessment Framework ( CAF ) was originally part of the NCSC ’ s support to the UK implementation of the EU NIS Directive , in 2018 . This framework helps to set the standard in cybersecurity .
Whether a CISO is an active participant in board meetings or not , the industry is increasingly aware of the huge business impacts of security breaches . More needs to be done to create a culture of security and to empower the CISO as a valued leader within the boardroom and the business . u www . intelligentciso . com
43