> “Effectively, what the role does is offer assurance to the customers or potential customers of that organization that their data, their information, their technology, the infrastructure, the platform itself, can be trusted as those customers adopt it,”
Like, protecting your customer's data should be assumed and the default. That you would need what's effectively another PR executive to communicate that and "offer assurance" just sounds like marketing speak for "We are doing the bare minimum, but we need our customers to think we do more than we actually do to keep theri data safe."
Just sounds like the CISO's personal PR mouthpiece and like you said, someone else to take the fall when they get breached.
> “Effectively, what the role does is offer assurance to the customers or potential customers of that organization that their data, their information, their technology, the infrastructure, the platform itself, can be trusted as those customers adopt it,”
Like, protecting your customer's data should be assumed and the default. That you would need what's effectively another PR executive to communicate that and "offer assurance" just sounds like marketing speak for "We are doing the bare minimum, but we need our customers to think we do more than we actually do to keep theri data safe."
Just sounds like the CISO's personal PR mouthpiece and like you said, someone else to take the fall when they get breached.