New CISO Struggling with Project Delays and IT Bottlenecks – Need Advice!

Hey everyone,

I recently became the CISO for a company that never had one before, and there was no existing risk or cybersecurity department. Now, I'm in charge of all information security matters, including cyber attacks, network security, and major IT projects (like applications for users and internal tools, our website, etc.). I also handle risk management tasks, such as business continuity policies.

My team and I have started developing policies and plans (like incident response), but we're facing significant delays in our projects. The main issue is that the IT department, which is responsible for executing these tasks, is causing bottlenecks. I've been with the company for over a year now, and the situation is becoming increasingly frustrating. Many initiatives, like deploying a DLP system or setting up a disaster recovery site, are stuck and not progressing.

Does anyone have advice on how to streamline our efforts and get things moving more smoothly? We're seeing the risks and trying to mitigate them, but it's not going as well as we'd like. Any insights would be greatly appreciated! submitted by /u/CelebrationSelect225
[link] [comments]


http://dlvr.it/T8lvc4