Giving the Job to a Network Specialist

In many small and midsize enterprises, the most knowledgeable and resourceful security expert is the company’s network specialist. The nature of their job forces them to confront and solve security issues almost on a daily basis.

As a result, it’s tempting to assign CISO duties to these individuals. After all, they are the most seasoned and experienced in working with your network, and they understand your network’s vulnerabilities better than anyone.

Being a technical expert, however, does not necessarily make the person a good candidate for the CISO role. Network specialists spend most of their time immersed in technology, which means they have little time to think about anything else, and they often rely on technology alone to solve problems.

CISOs provide a more global view of the security landscape. They understand the role of technology and how it fits within the construct of a well-designed security program. But they also know that without process, procedures and governance, technology can only do so much to protect against attacks.

Giving the Job to a Network Specialist

CISOs provide a more global view of the security landscape. They understand the role of technology and how it fits within the construct of a well-designed security program. But they also know that without process, procedures and governance, technology can only do so much to protect against attacks.

Up Next: What About Outsourcing?