Managing Cyber Risks at a Multinational Organisation CISO

36 Questions

Who may a CISO typically report to?

All of the above

What is the primary goal of incident response?

Mitigating the damage after a security breach

Why should the CISO oversee threat intelligence?

To integrate threat intelligence into security strategies

What is the primary goal of business continuity management and recovery?

Ensuring the organization can continue to operate in the event of major incidents or disasters

What should the CISO manage in terms of pen testing?

The overall pen testing program to ensure it aligns with risk management strategy

Why should the CISO manage monitoring, SIEM, and SOC?

To detect and respond to cybersecurity incidents

What is the primary responsibility of a CISO in terms of leadership?

Senior leader engagement, decisions and messaging

Which of the following is NOT a component of the CISO's Security Operations?

Risk Management

What is the purpose of the CISO's Communication and Training component?

Conducting user awareness campaigns

What is a key aspect of the CISO's Risk Management component?

Conducting risk visuals

What is the primary focus of the CISO's Physical Security and Business Continuity component?

Site access and insider threat

What is the role of the CISO in external engagement and escalations?

Deals with external engagement and escalations

Why should the CISO be involved in business continuity plans?

To ensure security considerations are embedded in the plans

What is the primary goal of Identity and Access Management (IAM)?

To mitigate unauthorized access to systems and data

What is a key challenge faced in the world of security?

Complexity

What framework consists of the components Identity, Protect, Detect, Respond, and Recover?

NIST framework

What should the CISO oversee to ensure they are adequate and effective against current and evolving threats?

Network security efforts

Why does the scope of the CISO vary depending on the organization?

Due to the size and structure of the organization

CISO consists of Security Operations Monitoring {SOC, ______} Incident response Threat Intelligence Pen testing Strategy & Policies

SIEM

Risk Management involves ______ visuals and Risk meetings

risk

The CISO should advise on the development of ______ and plan an annual testing cycle

controls

The CISO should manage stakeholder communication and ______ materials

stakeholder

Physical Security & Business Continuity involves ______ threat and business ethics & compliance

insider

CISO – Security Manager takes care of ______ as its senior leader engagement, decisions and messaging

leadership

A CISO can report to the ______ or CEO.

CIO/CTO

The CISO is responsible for ensuring that the ______ response plan is robust and effective.

incident

The CISO should manage ______ intelligence to inform protective measures and strategic security planning.

threat

The CISO should oversee a ______ testing program to ensure it aligns with risk management strategy.

pen

The CISO is responsible for ensuring that the organization can continue to operate in the event of major incidents or ______, including cyber attacks.

disasters

The CISO should manage ______, SIEM, and SOC to detect, analyze, and respond to cybersecurity incidents.

monitoring

The CISO should be involved in business continuity plans to integrate them with ______ response strategies.

incident

Network ______ encompasses all the technologies, processes, and policies designed to protect network data and resources.

security

______ & access management is key to protecting against unauthorized access to systems and data.

Identity

The CISO should oversee ______ efforts to ensure they are adequate and effective against current and evolving threats.

network security

The NIST framework consists of ______ Protect Detect Respond Recover.