{"id":20380,"date":"2023-11-09T05:46:29","date_gmt":"2023-11-09T05:46:29","guid":{"rendered":"https:\/\/mysourcefunding.com\/startups\/enhanced-risk-management-through-cco-ciso-collaboration\/"},"modified":"2023-11-09T05:46:30","modified_gmt":"2023-11-09T05:46:30","slug":"enhanced-risk-management-through-cco-ciso-collaboration","status":"publish","type":"post","link":"https:\/\/mysourcefunding.com\/?p=20380","title":{"rendered":"Enhanced Risk Management Through CCO-CISO Collaboration"},"content":{"rendered":"<div>\n<p><em>Sean Thompson, President &amp; Chief Executive Officer, <\/em><em data-ga-track=\"ExternalLink:https:\/\/www.navex.com\/\">NAVEX<\/em><em>.<\/em><\/p>\n<p>Every leader who\u2019s paying attention knows that risk and compliance management is business critical. Not just to stay on the right side of regulations, that\u2019s a given. But also to make your organization more resilient and your workplace culture stronger. That said, risk doesn\u2019t respect functional boundaries. So, a big part of getting this right is recognizing when different parts of the organization have overlapping responsibilities for identifying and mitigating risk. The next step, of course, is ensuring they work in harmony rather than in isolation. In my experience, two such functions are compliance and IT security. Let me explain.<\/p>\n<p>CCOs and CISOs share common ground when it comes to risk causes and vectors. I believe each would say their greatest exposures are employees, third parties and weak or insufficient processes.<\/p>\n<p>People are always at the root of compliance failures and IT security breaches, whether they are employees or third parties who interact with the company\u2019s systems. Both CCOs and CISOs need to understand these two risk \u201cactors\u201d and make sure they are monitored and trained to eliminate as much exposure as possible.<\/p>\n<p>A recent object lesson about the cost of employee mistakes is the MGM Grand ransomware attack. For anyone who missed it, the hackers reportedly found an employee\u2019s information on LinkedIn and impersonated them in a call to the IT help desk, where they obtained credentials to access and infect the company\u2019s network. Better training and stronger caller identification processes at the IT help desk might have prevented what is predicted to have cost the company more than $80 million. Both compliance and IT security have an interest\u2014and a role\u2014in preventing this from happening again.<\/p>\n<p><fbs-ad position=\"inread\" progressive=\"\" ad-id=\"article-0-inread\" aria-hidden=\"true\" role=\"presentation\"><\/fbs-ad><\/p>\n<p>Regarding third parties, both the CCO and CISO care a lot about vetting, educating and monitoring them. But this is often done in silos given the different aspects of the third party\u2019s business that concerns each function. At a minimum, this siloed approach introduces considerable inefficiencies and, in the worst case, risk management gaps. For instance, if a prospective vendor is on a government sanctions list, wouldn\u2019t the CISO want to know? And if the third party fails to meet IT security requirements, wouldn\u2019t that be of interest to the CCO? A best practice approach would have each function sharing all the salient information so that both can take appropriate actions to work more efficiently and reduce organizational risk.<\/p>\n<p>And then there is process. Compliance and IT security each have policies in place to comply with regulations, security frameworks and the like. Each assigns ownership for following these processes throughout the organization. Increasingly, these processes are reduced to discrete data inputs and automated so they can be monitored, analyzed and reported in ways that help the organization run better.<\/p>\n<p>When a data protection process is not followed, is it an IT security problem or a compliance failure? I suggest it\u2019s both. This makes it only logical that both these functions should be using the same integrated platform to manage risk across the organization.<\/p>\n<p>Finally, there is the reality of tunnel vision created by an environment of ever-increasing workloads. Vision tends to narrow when intensity increases. This gets magnified when people work in silos with little or no bigger-picture visibility. Unifying the processes and reporting capability of critical functions like compliance and IT security through a software platform approach can improve both functions\u2019 visibility to one another. Cooperation, efficiency, increased effectiveness and risk reduction will follow.<\/p>\n<p>In addition, collaboration between CCOs and CISOs can extend to training that complements mutual objectives as well as corporate communications that can help ensure the message employees receive is consistent and meaningful for both functions. New allies trust your partner and bring them in as their expertise adds value. For example, when a risk assessment calls for cyber expertise or a security vendor has questions about the code of conduct.<\/p>\n<p>When risk-signal data is captured, analyzed and reported in this unified way\u2014where the CCO and CISO can easily find the information they need to do their jobs in a single system with common dashboards\u2014everyone wins.<\/p>\n<p>Forbes Business Council is the foremost growth and networking organization for business owners and leaders. <em data-ga-track=\"InternalLink:https:\/\/councils.forbes.com\/qualify?utm_source=forbes.com&amp;utm_medium=referral&amp;utm_campaign=forbes-links&amp;utm_term=fbc&amp;utm_content=in-article-ad-links\">Do I qualify?<\/em><\/p>\n<\/div>\n<p>Read the full article <a href=\"https:\/\/www.forbes.com\/sites\/forbesbusinesscouncil\/2023\/11\/08\/enhanced-risk-management-through-cco-ciso-collaboration\/\" target=\"_blank\" rel=\"noopener\">here<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Sean Thompson, President &amp; Chief Executive Officer, NAVEX. Every leader who\u2019s paying attention knows that risk and compliance management is business critical. Not just to stay on the right side of regulations, that\u2019s a given. But also to make your organization more resilient and your workplace culture stronger. That said, risk doesn\u2019t respect functional boundaries. [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":20381,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"content-type":"","footnotes":""},"categories":[77],"tags":[],"class_list":{"0":"post-20380","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-startups"},"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v20.9 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Enhanced Risk Management Through CCO-CISO Collaboration | Brandiary<\/title>\n<meta name=\"description\" content=\"Sean Thompson, President &amp; Chief Executive Officer, NAVEX. Every leader who\u2019s paying attention knows that risk and compliance management is business\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/mysourcefunding.com\/?p=20380\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Enhanced Risk Management Through CCO-CISO Collaboration | Brandiary\" \/>\n<meta property=\"og:description\" content=\"Sean Thompson, President &amp; Chief Executive Officer, NAVEX. Every leader who\u2019s paying attention knows that risk and compliance management is business\" \/>\n<meta property=\"og:url\" content=\"https:\/\/mysourcefunding.com\/?p=20380\" \/>\n<meta property=\"og:site_name\" content=\"Brandiary\" \/>\n<meta property=\"article:published_time\" content=\"2023-11-09T05:46:29+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-11-09T05:46:30+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/mysourcefunding.com\/wp-content\/uploads\/2023\/11\/1699508790_0x0.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1351\" \/>\n\t<meta property=\"og:image:height\" content=\"900\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"News Room\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"News Room\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/mysourcefunding.com\/?p=20380#article\",\"isPartOf\":{\"@id\":\"https:\/\/mysourcefunding.com\/?p=20380\"},\"author\":{\"name\":\"News Room\",\"@id\":\"https:\/\/mysourcefunding.com\/#\/schema\/person\/5062dafb0f932b59aa228f1a047332f4\"},\"headline\":\"Enhanced Risk Management Through CCO-CISO Collaboration\",\"datePublished\":\"2023-11-09T05:46:29+00:00\",\"dateModified\":\"2023-11-09T05:46:30+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/mysourcefunding.com\/?p=20380\"},\"wordCount\":727,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/mysourcefunding.com\/#organization\"},\"articleSection\":[\"Startups\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/mysourcefunding.com\/?p=20380#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/mysourcefunding.com\/?p=20380\",\"url\":\"https:\/\/mysourcefunding.com\/?p=20380\",\"name\":\"Enhanced Risk Management Through CCO-CISO Collaboration | Brandiary\",\"isPartOf\":{\"@id\":\"https:\/\/mysourcefunding.com\/#website\"},\"datePublished\":\"2023-11-09T05:46:29+00:00\",\"dateModified\":\"2023-11-09T05:46:30+00:00\",\"description\":\"Sean Thompson, President &amp; Chief Executive Officer, NAVEX. Every leader who\u2019s paying attention knows that risk and compliance management is business\",\"breadcrumb\":{\"@id\":\"https:\/\/mysourcefunding.com\/?p=20380#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/mysourcefunding.com\/?p=20380\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/mysourcefunding.com\/?p=20380#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/mysourcefunding.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Enhanced Risk Management Through CCO-CISO Collaboration\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/mysourcefunding.com\/#website\",\"url\":\"https:\/\/mysourcefunding.com\/\",\"name\":\"Brandiary\",\"description\":\"Latest Business and Startup News and Updates\",\"publisher\":{\"@id\":\"https:\/\/mysourcefunding.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/mysourcefunding.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/mysourcefunding.com\/#organization\",\"name\":\"Brandiary\",\"url\":\"https:\/\/mysourcefunding.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/mysourcefunding.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/mysourcefunding.com\/wp-content\/uploads\/2023\/06\/b-logo-1.png\",\"contentUrl\":\"https:\/\/mysourcefunding.com\/wp-content\/uploads\/2023\/06\/b-logo-1.png\",\"width\":381,\"height\":100,\"caption\":\"Brandiary\"},\"image\":{\"@id\":\"https:\/\/mysourcefunding.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/mysourcefunding.com\/#\/schema\/person\/5062dafb0f932b59aa228f1a047332f4\",\"name\":\"News Room\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/mysourcefunding.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/mysourcefunding.com\/wp-content\/uploads\/2023\/06\/avatar_user_1_1688031660-96x96.png\",\"contentUrl\":\"https:\/\/mysourcefunding.com\/wp-content\/uploads\/2023\/06\/avatar_user_1_1688031660-96x96.png\",\"caption\":\"News Room\"},\"sameAs\":[\"https:\/\/mysourcefunding.com\"],\"url\":\"https:\/\/mysourcefunding.com\/?author=1\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Enhanced Risk Management Through CCO-CISO Collaboration | Brandiary","description":"Sean Thompson, President &amp; Chief Executive Officer, NAVEX. Every leader who\u2019s paying attention knows that risk and compliance management is business","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/mysourcefunding.com\/?p=20380","og_locale":"en_US","og_type":"article","og_title":"Enhanced Risk Management Through CCO-CISO Collaboration | Brandiary","og_description":"Sean Thompson, President &amp; Chief Executive Officer, NAVEX. Every leader who\u2019s paying attention knows that risk and compliance management is business","og_url":"https:\/\/mysourcefunding.com\/?p=20380","og_site_name":"Brandiary","article_published_time":"2023-11-09T05:46:29+00:00","article_modified_time":"2023-11-09T05:46:30+00:00","og_image":[{"width":1351,"height":900,"url":"https:\/\/mysourcefunding.com\/wp-content\/uploads\/2023\/11\/1699508790_0x0.jpg","type":"image\/jpeg"}],"author":"News Room","twitter_card":"summary_large_image","twitter_misc":{"Written by":"News Room","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/mysourcefunding.com\/?p=20380#article","isPartOf":{"@id":"https:\/\/mysourcefunding.com\/?p=20380"},"author":{"name":"News Room","@id":"https:\/\/mysourcefunding.com\/#\/schema\/person\/5062dafb0f932b59aa228f1a047332f4"},"headline":"Enhanced Risk Management Through CCO-CISO Collaboration","datePublished":"2023-11-09T05:46:29+00:00","dateModified":"2023-11-09T05:46:30+00:00","mainEntityOfPage":{"@id":"https:\/\/mysourcefunding.com\/?p=20380"},"wordCount":727,"commentCount":0,"publisher":{"@id":"https:\/\/mysourcefunding.com\/#organization"},"articleSection":["Startups"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/mysourcefunding.com\/?p=20380#respond"]}]},{"@type":"WebPage","@id":"https:\/\/mysourcefunding.com\/?p=20380","url":"https:\/\/mysourcefunding.com\/?p=20380","name":"Enhanced Risk Management Through CCO-CISO Collaboration | Brandiary","isPartOf":{"@id":"https:\/\/mysourcefunding.com\/#website"},"datePublished":"2023-11-09T05:46:29+00:00","dateModified":"2023-11-09T05:46:30+00:00","description":"Sean Thompson, President &amp; Chief Executive Officer, NAVEX. Every leader who\u2019s paying attention knows that risk and compliance management is business","breadcrumb":{"@id":"https:\/\/mysourcefunding.com\/?p=20380#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/mysourcefunding.com\/?p=20380"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/mysourcefunding.com\/?p=20380#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/mysourcefunding.com\/"},{"@type":"ListItem","position":2,"name":"Enhanced Risk Management Through CCO-CISO Collaboration"}]},{"@type":"WebSite","@id":"https:\/\/mysourcefunding.com\/#website","url":"https:\/\/mysourcefunding.com\/","name":"Brandiary","description":"Latest Business and Startup News and Updates","publisher":{"@id":"https:\/\/mysourcefunding.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/mysourcefunding.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/mysourcefunding.com\/#organization","name":"Brandiary","url":"https:\/\/mysourcefunding.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/mysourcefunding.com\/#\/schema\/logo\/image\/","url":"https:\/\/mysourcefunding.com\/wp-content\/uploads\/2023\/06\/b-logo-1.png","contentUrl":"https:\/\/mysourcefunding.com\/wp-content\/uploads\/2023\/06\/b-logo-1.png","width":381,"height":100,"caption":"Brandiary"},"image":{"@id":"https:\/\/mysourcefunding.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/mysourcefunding.com\/#\/schema\/person\/5062dafb0f932b59aa228f1a047332f4","name":"News Room","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/mysourcefunding.com\/#\/schema\/person\/image\/","url":"https:\/\/mysourcefunding.com\/wp-content\/uploads\/2023\/06\/avatar_user_1_1688031660-96x96.png","contentUrl":"https:\/\/mysourcefunding.com\/wp-content\/uploads\/2023\/06\/avatar_user_1_1688031660-96x96.png","caption":"News Room"},"sameAs":["https:\/\/mysourcefunding.com"],"url":"https:\/\/mysourcefunding.com\/?author=1"}]}},"_links":{"self":[{"href":"https:\/\/mysourcefunding.com\/index.php?rest_route=\/wp\/v2\/posts\/20380","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mysourcefunding.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mysourcefunding.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mysourcefunding.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mysourcefunding.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=20380"}],"version-history":[{"count":1,"href":"https:\/\/mysourcefunding.com\/index.php?rest_route=\/wp\/v2\/posts\/20380\/revisions"}],"predecessor-version":[{"id":20382,"href":"https:\/\/mysourcefunding.com\/index.php?rest_route=\/wp\/v2\/posts\/20380\/revisions\/20382"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/mysourcefunding.com\/index.php?rest_route=\/wp\/v2\/media\/20381"}],"wp:attachment":[{"href":"https:\/\/mysourcefunding.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=20380"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mysourcefunding.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=20380"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mysourcefunding.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=20380"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}