Cybersecurity roles in companies
Who’s who in cybersecurity?
Knowing the roles in cybersecurity is essential to know if we are using the appropriate and necessary security measures of our company to protect the information.
Knowing who is who and what functions each one should assume is essential to have a role policy with guidelines on how to generate a culture of cybersecurity and data protection in our company.
Cybersecurity roles in companies
Below are the different roles and we explain the most relevant functions of each one:
CEO (Chief Executive Officer)
Highest position within the company’s organizational chart, playing a crucial role in protecting the company and creating and strengthening a culture of cybersecurity.
The CEO must be actively involved in all these issues.
CSO (Chief Security Officer)
He is responsible for corporate security, both physical and technological.
CISO (Chief Information Security Officer)
Responsible for the company’s information security.
The CISO will be responsible for developing and implementing the company’s information security strategy, as well as identifying risks, in accordance with the company’s mission and vision; he or she will also coordinate the cybersecurity team and will be important in raising employee awareness of cybersecurity.
CIO (Chief Information Officer)
Leader of a company’s information technology.
The CIO is in charge of ensuring information security together with the CISO, being a key figure in adopting innovative technological solutions in the field of digital business transformation, as well as overseeing IT projects.
CTO (Chief Technology Officer)
Responsible for the company’s technology and innovation.
It is closely aligned with the role of the CIO, but with a more technical profile, complementing both figures.
CDO (Chief Data Officer)
Responsible for data protection within the company, better known as Privacy and Data Protection Officer.
The most relevant functions of this figure correspond to the management of data security and privacy (together with the CISO), as well as ensuring compliance with the obligations corresponding to the protection of personal data.
ETHICAL HACKER
The role of this figure is to complement the cybersecurity team, advising, testing and penetration testing to anticipate the identification of vulnerabilities, threats and potential risks that may occur in different departments of the company.
The appointment of this figure may be made by an internal profile or through outsourcing.
DPO / DPD (Data Protection Officer / Delegado de Protección de Datos)
The figure of DPD corresponds directly to one of the obligations of the data protection regulations, when any of the cases listed in art. 34 of the LOPDGDD apply. The data protection officer may also be appointed on a voluntary basis.
The DPD must meet the characteristics established in the law, such as accreditation of specialized knowledge in data protection law and practice, and will act as an interlocutor between the data controller and the AEPD.
Awareness and training team
They will be responsible for raising awareness among the company’s employees and managers of the importance of knowing the risks and threats related to the company’s security, as well as explaining the means by which cyber-attacks can be dealt with and how to react to such an event, as well as the data protection measures that have been applied at the corporate level and those that must be complied with in the workplace.
This team will be comprised of the Head of Privacy and Cybersecurity, Information Systems Technology Communication, along with the Incident Response and Human Resources teams.
All of them will work together to implement the information security program, train employees and managers in cybersecurity, as well as to publicize the Business Continuity Plan, design and implement preventive measures against possible threats and security incidents.
Business Adapter® at your service
Contact us by email: info@businessadapter.es, you can also call 96 131 88 04, or leave your message in this form:
[su_button url=”https://businessadapter.es/contacto” target=”blank” background=”#f6f903″ color=”#181818″ size=”7″ center=”yes” icon_color=”#000000″]Contact us, we will be pleased to help you.[/su_button]