The life of a Chief In­for­ma­tion Se­cu­rity Of­fi­cer (CISO)

Manila Bulletin - - Front Page -

ACISO is an ex­ec­u­tive-level man­ager who di­rects and man­ages an en­ter­prise’s strate­gies and gov­er­nance to pro­tect its in­for­ma­tion as­sets. He has suf­fi­cient au­thor­ity within an or­ga­ni­za­tion as he is re­spon­si­ble and ac­count­able for all its se­cu­rity pro­grams. The scope of a CISO’s role is very crit­i­cal that’s why this per­son has to be strate­gic so he’d be able to ac­cu­rately eval­u­ate the or­ga­ni­za­tion’s risk land­scapes, ed­u­cate top man­age­ment on risk mit­i­ga­tion, and con­duct in­ves­ti­ga­tion and cy­ber foren­sics when needed.

What’s a bet­ter way to un­der­stand the many tech­ni­cal and man­age­rial skills the po­si­tion re­quires than get­ting to know some­one who is in this role and check­ing out his qual­i­fi­ca­tions, char­ac­ter­is­tics, and val­ues.

So for any­one who may be cu­ri­ous, here’s what a CISO looks like: Manuel Joey A. Re­gala is cur­rently EastWest Bank’s FVP and Chief In­for­ma­tion Se­cu­rity & Data Pro­tec­tion Of­fi­cer. He is also the cur­rent pres­i­dent of the In­for­ma­tion Se­cu­rity Of­fi­cers Group (ISOG) and the past pres­i­dent (2013-2014) of the In­for­ma­tion Sys­tems and Con­trol As­so­ci­a­tion (ISACA). He has 36 years of com­bined man­age­ment ex­pe­ri­ence in the in­dus­tries of IT and Fi­nan­cial IT Se­cu­rity, this is why all his ac­tive ad­vo­ca­cies are all re­lated to IT in­fra­struc­ture and cy­ber­se­cu­rity.

He es­tab­lished the In­for­ma­tion Se­cu­rity Man­age­ment Sys­tem (ISMS) us­ing the ISO 270001/002 stan­dards, a Cer­ti­fied In­for­ma­tion Sys­tems Au­di­tor (CISA) and Cer­ti­fied 27001 Lead Au­di­tor. In 2017, at Hanoi, Viet­nam, he be­came one of the ASEAN CIO/CSO Awardees. On top of his mer­its and cre­den­tials in the IT in­dus­try, it’s also note­wor­thy to know that he was also a Cer­ti­fied Pub­lic Ac­coun­tant, mak­ing his knowl­edge in the fi­nance in­dus­try in­dis­putable.

Joey states that as a CISO, es­tab­lish­ing great im­pact in his do­main was made pos­si­ble be­cause of these three im­por­tant as­pects that all CISOs should be mind­ful of. He calls it his CIA, which stands for Cul­ture, In­tegrity, and Abil­ity.

What also sets Joey apart from other IT ex­ec­u­tives are his lead­er­ship and peo­ple skills com­bined with his cre­ativ­ity, and pas­sion for what he does. He has al­ready acheived many ac­com­plish­ments and ex­pe­ri­ences in both fi­nance and IT in­dus­tries but still keeps a very low pro­file.

Now, with ISOG’s grow­ing in­flu­ence, he con­tin­ues his quest to coun- ter cy­ber­crimes and help pro­vide in­no­va­tive IT en­ter­prise so­lu­tions. From Oc­to­ber 8 to Novem­ber 8 of this year, this team will hold an an­nual cam­paign with three cul­mi­nat­ing ac­tiv­i­ties on Oc­to­ber 17, 18, and 24. This cy­ber­se­cu­rity event is a pi­o­neer in the Philip­pine his­tory and most of the coun­try’s top-level IT pro­fes­sion­als are at­tend­ing.

A CISO is an ex­ec­u­tive-level man­ager who di­rects and man­ages an en­ter­prise’s strate­gies and gov­er­nance to pro­tect its in­for­ma­tion as­sets.

Newspapers in English

Newspapers from Philippines

© PressReader. All rights reserved.