in ,

Deltek’s Angie Petty: House Panel’s Suggestion to Reorganize CISO-CIO Reporting Structure Reflects Private Sector Trend

Deltek’s Angie Petty: House Panel’s Suggestion to Reorganize CISO-CIO Reporting Structure Reflects Private Sector Trend - top government contractors - best government contracting event
https://executivebiz-media.s3.amazonaws.com/2022/08/19/30/9f/c3/a0/b7/6f/d4/64/Executive-Biz.png

cybersecurityA House Energy and Commerce Committee report’s suggestion to require an agency’s chief information security officer to directly report to the Office of the General or Chief Counsel rather than the chief information officer reflects a trend that is common in the private sector, Angie Petty writes in a blog post for Deltek.

Petty, a senior principal analyst at Deltek, said the House panel’s recommendation stems from the finding that CIOs within the divisions of the Department of Health and Human Services focus more on operational matters than data security risks.

The House panel also found that the traditional structure where CISOs report to CIOs keeps security officials from carrying out comprehensive security audits.

Lawmakers stated in the report that changes to the conventional reporting structure will help mitigate the “tension” between operations and security.

“In my cursory search, I was not able to find any federal CISOs who reported to the Office of General Counsel or to any office other than the CIO,” Petty said.

“However, in the private sector there is a debate regarding whether the CISO function should report to the CIO or directly to the CEO.”

She noted that organizations in the private sector are more concerned that the reporting structure between CISOs and CIOs might lead to the prioritization of revenue-driven operations over security concerns.

ExecutiveBiz Logo

Sign Up Now! ExecutiveBiz provides you with Daily Updates and News Briefings about Cybersecurity News

mm

Written by Jane Edwards

is a staff writer at Executive Mosaic, where she writes for ExecutiveBiz about IT modernization, cybersecurity, space procurement and industry leaders’ perspectives on government technology trends.

Lockheed Orders 250 Cubic Air Combat Training Systems for F-35; Bill Toti Comments - top government contractors - best government contracting event
Lockheed Orders 250 Cubic Air Combat Training Systems for F-35; Bill Toti Comments
Raytheon|Websense Poll: 31% of Security Execs Confident in Their Firm's Network Security - top government contractors - best government contracting event
Raytheon|Websense Poll: 31% of Security Execs Confident in Their Firm’s Network Security