Elevating Cybersecurity 2025

Page 13 of 26 · WEF_Elevating_Cybersecurity_2025.pdf

← Prev Next → Download original PDF
Data teams Responsibilities of the CISO to data teams –Conduct regular risk assessments focused on data-related assets and processesResponsibilities of data teams to the CISO –Promptly report any suspected or actual data breaches, leaks or anomalies to the CISO or security operations team –Implement safeguards that help withstand business disruptions and ensure the availability of services Procurement teams Responsibilities of the CISO to procurement teams –Provide guidance on key criteria to assess third parties and suppliers –Offer guidance to enhance general terms and conditions with cybersecurity-related requirement and associated oversight of third parties and suppliers Responsibilities of procurement teams to the CISO –Provide visibility into the business criticality of third parties and suppliers Research and development (R&D) teams Responsibilities of the CISO to R&D teams –Provide advice in a timely manner, taking into consideration business requirementsResponsibilities of R&D teams to the CISO –Involve and consult the cybersecurity team early in the development of new products and services to make sure cybersecurity practices are embedded from the outset Legal teams Responsibilities of the CISO to legal teams –Consult on a regular basis and when a change of regulation occurs in order to understand any impact on cybersecurity practicesResponsibilities of legal teams to the CISO –Communicate new cyber-related requirements in a timely manner and help the CISO translate the requirements into business terms Business continuity teams Responsibilities of the CISO to business continuity teams –Closely align cyber resilience plans with the central business continuity and crisis management processesResponsibilities of business continuity teams to the CISO –Communicate crises in a timely manner when they may have a ripple effect on cybersecurity and cyber resilience Communication teams Responsibilities of the CISO to communication teams –Provide accurate, timely and contextual information about security risks and incidents to enable clear, trustworthy messagingResponsibilities of communication teams to the CISO –Provide the CISO with clear, timely and strategic messaging support and mechanisms to ensure consistent internal and external narratives during both routine operations and security incidents Elevating Cybersecurity: Ensuring Strategic and Sustainable Impact for CISOs 13
Ask AI what this page says about a topic: