Defense in Depth

How Are New SEC Rules Impacting CISOs?

Nov 7, 2024

Allan Cockriel, Group CISO at Shell, dives into the impact of new SEC regulations on cybersecurity roles. He discusses the heightened accountability CISOs now face and the complexities of meeting regulatory demands amidst cyber threats. Cockriel highlights the importance of transparency while balancing security risks and the potential for a talent exodus in the field. Additionally, he emphasizes the need for industry collaboration and robust control frameworks to navigate these challenges successfully.

34:32

Creator website

Episode guests

Allan Cockriel

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Increasing SEC regulations are placing greater accountability on CISOs, leading to fears of job security and potential talent exodus from the industry.

As the role of the CISO evolves under scrutiny, there is a need for clearer definitions of responsibilities to balance risk management with organizational goals.

Deep dives

The Accountability Dilemma for CISOs

Increasing regulations from the SEC are placing significant accountability on CISOs, which raises concerns about their ability to operate effectively within their organizations. Many CISOs feel overwhelmed by the expectation to report on cybersecurity risks and breaches, particularly when their influence over organizational practices is limited. The pressure for accountability may lead to a misunderstanding of the constraints that CISOs face, especially regarding systemic issues that require upstream leadership involvement. As a result, there is a growing fear that these expectations could set CISOs up for failure rather than fostering a collaborative effort to improve cybersecurity.

Intro

3min

Navigating New SEC Regulations: The Evolving Role of CISOs

11min

Navigating CISO Responsibilities and Cyber Threats in Light of New SEC Rules

4min

The Evolving Role of CISOs

14min

Navigating Transparency and Risk in CISO Roles Under New SEC Regulations

3min

All links and images for this episode can be found on CISO Series.

Check out these posts for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Steve Zalewski. Joining us is Allan Cockriel, group CISO, Shell.

In this episode:

Striking a balance
Will we see a talent exodus?
Playing by the same rules
This is an organizational responsibility

Thanks to our podcast sponsor, SpyCloud

Cybercrime doesn’t take breaks. Protect your organization from ransomware, account takeover, and online fraud with SpyCloud. SpyCloud recaptures stolen identity data from breaches, infostealer malware, and phishing attacks that put your business at risk. Teams use SpyCloud’s advanced analytics and powerful automation to stay ahead of attackers. Visit spycloud.com for your free risk report and start disrupting cybercrime today.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Defense in Depth

How Are New SEC Rules Impacting CISOs?

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

The Accountability Dilemma for CISOs

The Evolving Role of the CISO

The Fear of Job Insecurity

Need for Clear Standards and Transparency

Remember Everything You Learn from Podcasts