CISO / Security Expert

Security Expert / CISO

Security Experts, headed by the Chief Information Security Officer (CISO) in a bank play a crucial role in maintaining security around the institution's sensitive data, IT systems, and digital assets. A security expert is responsible for ensuring the security of an organization's information systems and data. They conduct security assessments, identify vulnerabilities, and implement security controls to protect the company's data and systems.

The CISO is responsible for managing and mitigating risks associated with cybersecurity and ensuring compliance with relevant regulations and industry standards.

Objectives

Challenges

Open Source Engagement

By collaborating with the IT department and other business units, the CISO ensures that OSS usage aligns with the bank's information security policies and industry regulations. They assess potential security vulnerabilities and risks associated with OSS, implement necessary security controls, and monitor ongoing updates and patches to maintain a secure environment.

Internal Stakeholders

• CEO and other executive leadership
• IT Department
• Line of Business
• Risk Management and Compliance
• Legal

Expected Activities

Open Source Supply Chain Security

In this article we are going to look at the growing issue of software supply chain attacks via some examples and then look at the emerging field of open source supply chain security: what it is, current best practices, the institutional landscape and emerging legislation.

Further Reading

tbd