Light Dark
June 19, 2013 By Marc van Zadelhoff < 1 min read
CISO

We’ve been doing some research on how to talk security to the CIO. Been fascinating. Talked to two CIOs just this week and many more  last week. I’m amazed at how much security is on their radar and how much they know about it. We’ve been warned to “keep it simple, CIOs aren’t experts”… we’ve found the opposite.  Nothing superficial about it, they are living this.  Key themes:

  • Security has spiked as a Board room concern (read: “I now get called in often!”)
  • They still feel they don’t know what they don’t know (e.g., is there malware we just haven’t found?)
  • Very risk management oriented in their approach to problems solving
  • Tired of needing 30 vendors to solve the problem — looking for a strategic partner!
  • (side note, for those interested in reporting lines: almost all the companies we interviewed, the CIO managed the CISO, with few exceptions)

Certainly themes we’ll be playing on as we move forward with our strategy. One of the CIOs ended by making clear how personally critical security is, she said: “It really is one of the few things that can be a job breaker.” Clear enough.

 |  | 
Marc van Zadelhoff
General Manager, IBM Security

More from CISO
February 3, 2025

CISOs drive the intersection between cyber maturity and business continuity

4 min read - The modern corporate landscape is marked by rapid digital change, heightened cybersecurity threats and an evolving regulatory environment. At the nexus of these pressures sits the chief information security officer (CISO), a role that has gained newfound influence and responsibility.The recent Deloitte Global Future of Cyber Survey underscores this shift, revealing that “being more cyber mature does not make organizations immune to threats; it makes them more resilient when they occur, enabling critical business continuity.” High-cyber-maturity organizations increasingly integrate cybersecurity…

December 30, 2024

CISO vs. CEO: Making a case for cybersecurity investments

4 min read - Ask CISOs why they think there is a cyber skills shortage in their organization, what keeps them up at night or what the most important issue facing the industry is — at some point, even if not the first response, they will bring up budgets.For example, at RSA Conference 2024, a roundtable discussion about issues facing the cybersecurity industry, one CISO stated bluntly that budgets — or lack thereof — are the biggest problem. At a time when everything is…

December 13, 2024

Making smart cybersecurity spending decisions in 2025

4 min read - December is a month of numbers, from holiday countdowns to RSVPs for parties. But for business leaders, the most important numbers this month are the budget numbers for 2025. With cybersecurity a top focus for many businesses in 2025, it is likely to be a top-line item on many budgets heading into the New Year.Gartner expects that cybersecurity spending is expected to increase 15% in 2025, from $183.9 billion to $212 billion. Security services lead the way for the segment…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2025 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature