Cybersecurity Wake Up Call: Elevating CISO's to the Boardroom

In yet another twist, the U.S. Securities and Exchange Commission (SEC) has just shaken the cybersecurity world to its core, and it's got me wondering about some questions about the whole industry.

The charges laid upon SolarWinds and their Chief Information Security Officer (CISO), Timothy G. Brown, have emotions running high. It is not just a run-of-the-mill cybersecurity issue anymore; this is a game-changer with global implications. It forces us to ask a critical question: should CISOs be given a seat at the boardroom table?

The answer, from where I stand, is an unequivocal "YES." It is crystal clear that CISOs are no longer just tech-savvy guardians of our estates, they are the key assets of our organisations, standing on the front line to protect our digital assets, customer trust, and the very future of our businesses. Cybersecurity isn't a standalone department, it is one of the key functions of our enterprises.

What we are witnessing with SolarWinds is a glaring reminder that CISOs should be influential voices in our corporate decision making processes. We can not afford to ignore their insights any longer. Without their guidance, we are leaving our companies exposed to potentially devastating cyberattacks, and the fallout from these attacks extends far beyond just ones and zeros.

As CISOs find themselves under an increasingly harsh spotlight, we must also reconsider how we reward them for shouldering the immense risks, both professionally and personally. Holding them personally accountable for security breaches should come with the recognition and compensation that reflects the gravity of their responsibilities.

For me, this is a game changer. It's a wakeup call that's shaking the very foundations of our industry. Cybersecurity is not an optional expense, it is a non negotiable investment in the survival of our businesses. The SolarWinds incident is a stark reminder that negligence in cybersecurity can lead to catastrophic consequences, not just for our shareholders, but for society as a whole.

In the aftermath of this revelation, I believe the cybersecurity industry stands at a pivotal moment. CISOs shouldn't be relegated to the shadows any longer, they need to be demanding the respect, recognition, and the chance to influence critical decisions at the highest levels of our organisations.

What I think we can all have learn from SolarWinds is that cybersecurity is not just about digital defence mechanisms, it is very much about ethics and accountability. It is about standing strong against those who seek to disrupt our way of life. It is about maintaining trust with our customers, partners, and stakeholders.

In the end, the fate of our industry rests on how we collectively respond to this crisis. It is a call to action for all of us to empower our CISOs, to give them that long overdue seat at the table, and to compensate them accordingly. I would be interested to hear others thoughts on this in the comments, thank you!

Nikki Webb

#cybersecurity #solarwinds #CISO