CISO Trainings , Events , GovWare
CISOs Must Shift From 'Department of No' to Enablers of Secure Business
Aboitiz Group's Charmaine Valmonte on Building Cyber Resilience With Culture ChangeBuilding a resilient security program requires organizations to balance continuous operations with critical testing and training needs. Enterprises often struggle to balance security with business priorities and find the time to conduct comprehensive security exercises in a 24/7 operational environment, said Charmaine Valmonte, CISO at Aboitiz Group and, CyberEdBoard member. To address these "roadblocks," security leaders must understand that the scope of their role extends beyond their technical expertise and involves nurturing a resilient organizationwide cybersecurity culture.
See Also: Security Culture Report for ASIA 2024
"When you become a CISO, we learn that we're not the 'Department of No,' but we are the department to understand. We are the department to allow through certain processes so that the business can continue to function and continue to innovate securely," Valmonte said. "You turn from technical to more of a coach, a teacher, and you engage with your clients … The mindset changes from telling people what not to do, to servicing those people."
In this video interview with Information Security Media Group at the GovWare Conference and Exhibition 2024, Valmonte also discussed:
- The role of artificial intelligence in augmenting cybersecurity efforts;
- Strategies for modernizing security in hybrid environments;
- The critical components of a successful cybersecurity program: people, process and technology.
Valmonte has more than 30 years of experience in the U.S. military and the private sector. She has managed international security programs and is recognized for her commitment to developing local talent in the cybersecurity field. She is a member of the CyberEdBoard.