What is the role of the CIO in the organization?

Understanding Business
12th Edition
ISBN:9781259929434
Author:William Nickels
Publisher:William Nickels
Chapter1: Taking Risks And Making Profits Within The Dynamic Business Environment
Section: Chapter Questions
Problem 1CE
icon
Related questions
Question

Need answer. Thank you.

What is the role of the CIO in the organization?
Transcribed Image Text:What is the role of the CIO in the organization?
According to a global information security survey by the giant E&Y in 2010, in 46% of cases
firms have reported an increase in investment in information security. The report also indicates
that 60% interviewees feel that the use of cloud computing, smartphones, social media and
other personal gadgets have posed a higher risk to information security. However, a firm must
keep a proper mix of managerial, behavioral and technical aspects of information security to
overcome the data risk challenges.
Organizations have substantially improved information security programs to address
accelerating threats. They have added new features to their information security systems,
redefined strategies, installed new information security function components and added more
people. These step-by-step adjustments have undoubtedly improved information security
capabilities. It just hasn't improved them enough.
Traditionally, IT departments do not have a formal risk landscape or assessment mechanism
something that is fundamental to the risk function. This may explain why 52% of
organizations do not have a threat intelligence program currently in place. Without a
disciplined approach to researching and monitoring threat intelligence, the IT function is not
only unable to proactively address current threats; it also has no way of anticipating the threats
that are lurking just around the corner. This only reemphasizes the gap. It's a familiar refrain,
particularly in today's era of economic volatility and spending restraint: too much work, not
enough resources. But a lack of resources only tells part of the story. Information security
doesn't just need more resources; it needs people with the right skills and training to meet
rapidly evolving changes in the information security landscape.
The article above demonstrates the trend and survey of information security from Year 2010
to Year 2012 by E&Y. Based on your opinion, discuss the followings with justification:
Transcribed Image Text:According to a global information security survey by the giant E&Y in 2010, in 46% of cases firms have reported an increase in investment in information security. The report also indicates that 60% interviewees feel that the use of cloud computing, smartphones, social media and other personal gadgets have posed a higher risk to information security. However, a firm must keep a proper mix of managerial, behavioral and technical aspects of information security to overcome the data risk challenges. Organizations have substantially improved information security programs to address accelerating threats. They have added new features to their information security systems, redefined strategies, installed new information security function components and added more people. These step-by-step adjustments have undoubtedly improved information security capabilities. It just hasn't improved them enough. Traditionally, IT departments do not have a formal risk landscape or assessment mechanism something that is fundamental to the risk function. This may explain why 52% of organizations do not have a threat intelligence program currently in place. Without a disciplined approach to researching and monitoring threat intelligence, the IT function is not only unable to proactively address current threats; it also has no way of anticipating the threats that are lurking just around the corner. This only reemphasizes the gap. It's a familiar refrain, particularly in today's era of economic volatility and spending restraint: too much work, not enough resources. But a lack of resources only tells part of the story. Information security doesn't just need more resources; it needs people with the right skills and training to meet rapidly evolving changes in the information security landscape. The article above demonstrates the trend and survey of information security from Year 2010 to Year 2012 by E&Y. Based on your opinion, discuss the followings with justification:
Expert Solution
steps

Step by step

Solved in 2 steps

Blurred answer
Similar questions
  • SEE MORE QUESTIONS
Recommended textbooks for you
Understanding Business
Understanding Business
Management
ISBN:
9781259929434
Author:
William Nickels
Publisher:
McGraw-Hill Education
Management (14th Edition)
Management (14th Edition)
Management
ISBN:
9780134527604
Author:
Stephen P. Robbins, Mary A. Coulter
Publisher:
PEARSON
Spreadsheet Modeling & Decision Analysis: A Pract…
Spreadsheet Modeling & Decision Analysis: A Pract…
Management
ISBN:
9781305947412
Author:
Cliff Ragsdale
Publisher:
Cengage Learning
Management Information Systems: Managing The Digi…
Management Information Systems: Managing The Digi…
Management
ISBN:
9780135191798
Author:
Kenneth C. Laudon, Jane P. Laudon
Publisher:
PEARSON
Business Essentials (12th Edition) (What's New in…
Business Essentials (12th Edition) (What's New in…
Management
ISBN:
9780134728391
Author:
Ronald J. Ebert, Ricky W. Griffin
Publisher:
PEARSON
Fundamentals of Management (10th Edition)
Fundamentals of Management (10th Edition)
Management
ISBN:
9780134237473
Author:
Stephen P. Robbins, Mary A. Coulter, David A. De Cenzo
Publisher:
PEARSON