There have been volumes written about the role of the CSO and how to gain a seat at the table in the C-suite. A relatively small number of CSOs have been able to convince their management that the CISO should be under their purview, citing the inherent mission conflicts that exist when the CISO reports to the CIO.
Every single thing we do each day is defined as a process. When you get up in the morning until you go to sleep at night, each thing you do is a process.
This month’s column will discuss the advantages and disadvantages of reporting to the Chief Administrative Officer (CAO), one of the reporting structures that appears to be gaining significant ground across industry sectors.
Last month’s column addressed the security organization reporting to the General Counsel, which studies show is one of the more common reporting relationships for security executives.
This month we will discuss the advantages and disadvantages of reporting to the General Counsel (GC). Most enterprises combine a number of functions under the Office of the General Counsel... the most common include Chief Legal Officer, Chief Compliance Officer, Secretary of the Board of Directors and, in many enterprises, Chief Administrative Officer.
Where within the enterprise the corporate security department reports is often more form over function. It may be personality driven, power driven or simply a corporate culture thing. Many companies have a hard time deciding where corporate security should report.