Here is a selection of my personal favorite cyber security resources...
The cybersecurity market has experienced massive growth over the last five years, with the demand for skilled cybersecurity professionals expected to increase to 6 million worldwide by 2019.
According to the most recent (ISC)² Global Information Security Workforce Study, we are entering a workforce gap in the cybersecurity field of 1.5 million in the upcoming five years, all while the demand for information security experts keeps on rising.
In fact, more and more organizations increase their staffing for security-related positions and dedicate larger portions of their budget to the recruitment, training and retention of competent security professionals.
What is a CISO
Related post: How to Succeed in Your First 100 Days as CISO
A CISO is a senior-level executive bearing the full weight of the organization’s security responsibilities who is responsible for designing and implementing a comprehensive information security program to protect the organization from internal and external threats. Median salaries for CISOs in the United States are reported to be no less $152,140, and are expected to continue to increase going forward (PayScale, 2017).
The role of a CISO – no walk in the park!
Faced with an increasingly complex threat landscape, strict compliance requirements and budgetary constraints, today’s CISOs are under tremendous pressure to protect their organization’s critical data assets from cyberthreats such as ransomware, phishing and DDoS attacks.
They have to have a broad understanding of the security industry. CISOs possess the necessary technical knowledge and business acumen to implement measures in line with corporate strategy. They demonstrate leadership skills and strategy thinking, and know how to communicate clearly and effectively with the Board of Directors, executive management and employees alike (Frost & Sullivan, 2015).
In short, CISOs tend to wear many hats and often struggle keeping up to date with today’s cybersecurity developments while juggling their day-to-day responsibilities.
Resources for CISOs
If you can sympathize with the multi-armed CISO in the illustration above, we’ve got you covered!
We’ve gathered a few useful resources that will help busy CISOs keep up with the rapidly evolving cybersecurity landscape. Make sure to bookmark this page and check back regularly for updates!
- Definition: CISO (Chief Information Security Officer) (TechTarget, 2017)
- What Is The Role of a CISO? (Information Systems Security, 2015)
- A New CISO’s To-Do List (Campus Technology, 2006)
- 3 Reasons Why Your CISO is Critical to Your Business Success (Hitachi Systems Security, 2016)
- 5 biggest cybersecurity concerns facing CIOs, CISOs in 2016 (CIO – IDG Communications, 2016)
Research, Reports & Whitepapers
- Research Unearths 5 Secrets for Higher Performing CISOs (SecurityWeek, 2017)
- CISO Hot Topic: Communicating to and Influencing CEOs and Boards of Directors: What Works and What to Avoid (The SANS Institute, 2016)
- Real-World Case Study: The Overloaded Security Professional’s Guide to Prioritizing Critical
- Security Controls (The SANS Institute, 2016)
- The 2015 (ISC)2 Global Information Security Workforce Study (Frost & Sullivan, 2015)
- Cybersecurity Jobs Report (Cybersecurity Ventures, 2016)
- The SANS State of Cyber Threat Intelligence Survey: CTI Important and Maturing (The SANS Institute, 2016)
Learning & Training
- Cybrary: Open source online cyber security training community with educational content for everything security-related, from basic networking to penetration testing and certification training.
- InfoSec Institute. Cybersecurity information and training, including a multitude of tutorials and articles on security topics.
- SANS Institute. Large training resource about computer security, information security and IT security.
- CERIAS. An information assurance and security research center, Purdue University’s CERIAS offers useful information resources for CISOs, including white papers, research, tools, and more.
- EC-Council. Are you ready to be a CISO? The Certified CISO (CCISO) Program certifies information security professionals around the world and prepares them for becoming top-level security executives.
- What CSOs should do on their first days (CIO – IDG Communications, 2015)
- The Journey to CISO (CSO Online, 2016)
- Six Challenges CISOs Will Face in 2017 (CSO Online, 2017)
- Should a CISO Build an IT Security Dream Team or Outsource? (Hitachi Systems Security, 2016)
- Nine CIO Tips for Surviving and Thriving in 2015 (TechTarget, 2015)
- Building a Security Operations Center (Hitachi Systems Security, 2017)
- How to Succeed in Your First 100 Days as CISO (Hitachi Systems Security, 2017)
Industry News & Updates
- Dark Reading
- CIO – Security
- The Ponemon Institute
- TechTarget – Search CIO
- Forrester CIO
- CISO Handbook
- Information Systems Security Association
- CISO Platform
Twitter Accounts to Follow
- @InfoSec HotSpot
Want to learn more about the responsibilities of a CISO? Ensuring regular security audits is just one out of many projects that CISOs need to think about. Check out our on-demand webinar on how to perform successful security audits by clicking below!