The role of CISO in network security goes beyond risk management. It also requires understanding compliance regulations and business needs, as well as the ability to communicate security policies to non technical employees
"The role of the CISO is to provide the overarching security roadmap for the organization, and securing the network is a vital part of that. The network creates the foundation for all applications and data managed by the company's IT department, making it the primary target for where security prevention tools are implemented.
A CISO must understand how the business plans to utilize the data network. With this understanding, the CISO can create a security framework that enables the business to perform the tasks needed with the lowest amount of risk. While the CISO does not implement the actual network security technologies outlined in the framework, a previous technical background in IT networking or network implementation only benefits the security program..."
Read More ...