discovered and serve as a point of contact to keep executives and communications / legal teams informed. They are also responsible for taking care of their own cybersecurity team and ensuring that they have the necessary resources to maintain strong cyber defence posture.
After an incident, it is indispensable to identify the gap( s) in cyber defences and communications that allowed the breach to happen and could have prevented it. Incident response and post-breach lessons are not solely technical work – there is a vital organisational element to cybersecurity.
Executive leadership must work to empower the CISO and cyber defenders to avoid repeating the same mistakes and allowing the incident to recur, lest their efforts be wasted.
CISOs should have champions in the C-Suite and board and have clear lines of communication to middle management to keep cybersecurity as an integral part of business operations.
Since every employee is the last line of defence, the cybersecurity culture and respect to basic hygiene must be rooted at the staff level as well.
supplychaindigital. com
103