CISOs Need to See the Invisible to Get the Board's Buy-InIIM Director Bhimaraya Metri on Helping Boards Make the Right Security Decisions
Boards are more engaged in security and risk these days. It's a great time for CISOs to demonstrate their leadership, help the board understand what's achievable and uncover invisible issues facing the organization, said Bhimaraya Metri, director of the Indian Institute of Management, Nagpur.
Boardrooms at some proactive organizations are recognizing the importance of cybersecurity and have formed working committees to evaluate risks, third-party issues and the need for capacity building. The CISO must enlist the board as the first line of defense, Metri said, and be willing to share the darker side of cyberthreats with the organization. The job also requires reporting metrics and communications to engage the board on the incidents in real time.
In this video interview with Information Security Media Group at the Mumbai Summit, Metri also discussed:
- Appropriate courses that can elevate CISOs as leaders;
- Bridging the skills gap through a technology management program;
- How boardrooms can eliminate obstacles in establishing proactive security.
Metri, who leads IIM Nagpur, previously served as director at IIM Tiruchirappalli. Prior to that, he was the dean of the L&T Institute of Project Management, Vadodara, India, and a professor at the International Management Institute, New Delhi. Metri also worked at BITS Pilani and was in charge of the doctoral program for about three years. He has published more than 100 papers in international and national journals and conference proceedings and trained over 100 vice chancellors of state and central universities and over 1,000 deans, directors, principals and department heads of technical institutions.