Does Government Need a CISO? The Fallacy of Service Over Security
The Government of India has passed a regulation stating that every ‘State’ government needs to have a CISO to regulate the security procurement and controls, apart from appointing a security incident response team. The fundamental question that arises is ‘whether the government needs a CISO and what should be the CISO’s role and responsibilities in protecting the critical infrastructure against growing threats’? How do CISOs balance services with security and face the dichotomy, and what needs to change in their approach in the current hybrid cyberwar?
The session will cover:
- Balancing security and regulatory controls with Public Service Delivery
- Changing role of government CISOs
- Effective ways to implement security controls in the hybrid cyberwar