San Francisco CISO Inner Circle

The mission for today’s CISO - build security that IT (and the business) loves. Traditionally, important strategies like Zero Trust have been seen by IT as a roadblock to success—leading to additional implementation projects, new solutions to learn, and false positives that slow innovation.  

Instead, security leaders can cultivate strategies that adapt to future business challenges in ways that empower IT organizations to do their best work and allow them to adopt business-accelerating technologies with confidence. First, explore new SOC strategies to increase efficiencies, decrease risk exposure, and drive the business forward. Second, discover how the effort to make IT’s job easier encourages healthy working relationships across the C-suite to collaborate productively without stepping on each other’s toes, while also maximizing influence across the organization from a security standpoint.  

Discussion Questions: 

A SOC is Not a Silo 

• Many organizations struggle with legacy silo issues between IT and the SOC - how have you overcome these challenges? How do you build close working relationships between the SOC and lines of business? 

• How do you ensure that your SOC strategy aligns with the business strategy? What is your SOC doing for you today and how will you use it to move the organization forward in the future? 

• What metrics do you use to evaluate the successes and failures of your SOC? 

Relationships as a Proactive Security Strategy 

• How are you expanding your influence and partnerships with other c-level executives to show the value of security in accelerating business outcomes? 

• How do you clarify responsibilities for security incident detection and response distributed across the enterprise and across different functions and infrastructure? 

• How have you overcome challenges when IT/security priorities conflict? How do you ensure the same conflicts will not arise again in the future?