CIO – Page 110 – CIO.works

Payment App Development: Complete Guide to Build Secure Apps 2025

Appinventiv showcases its impact with over 3000 digital deliveries across 35+ industries. The company offers a comprehensive range of AI solutions, app development services, and digital transformation offerings. Key highlights include security measures for payment app development, diverse monetization models, and the significance of user experience. Appinventiv emphasizes the importance of compliance, security, and technology in creating successful payment apps amidst growing mobile payment trends. The text encourages businesses to recognize the immense opportunities in the digital payment landscape and provides insights into effective strategies for entering this market.

https://appinventiv.com/blog/payment-app-development-guide/

Credit Card Processing Fees: What You Need To Know (2025)

By CIO / Blog / payments

Credit Card Processing Fees Overview:

Businesses incur credit card processing fees for transactions, primarily consisting of interchange fees (1%-3%), assessment fees (0.15%-0.25%), and processor markup fees. Average fees range from 1.70%-2.5% of the transaction amount. To minimize costs, businesses can choose appropriate pricing models, reduce chargebacks, negotiate fees, or encourage lower-cost payment methods. Key processors include Shopify Payments, PayPal, and Square, each with distinct pricing structures and additional costs. Understanding hidden fees and reading processing statements helps ensure cost efficiency for retail operations.

https://www.shopify.com/za/blog/credit-card-processing-fees

Exclusive: CIO Says AI Breaks the Cycle of Forced ERP Upgrades

By CIO / Blog / workforce, AI

CIO Joe Locandro (Rimini Street) claims AI allows companies to avoid forced ERP upgrades, reduce costs, and maintain legacy systems as assets. The ageing IT workforce presents a challenge, but custom third-party support offers solutions. AI improves innovation by accessing data without costly migrations, akin to the app revolution in consumer tech. Locandro criticizes rigid vendor upgrade policies and emphasizes the shift of power to customers, enabling choices between system upgrades, innovations, or maintaining current systems without pressure.

https://channellife.co.nz/story/exclusive-cio-says-ai-breaks-the-cycle-of-forced-erp-upgrades

25% of Security Leaders Replaced After Ransomware Attack

By CIO / Blog / CISO, career, cybersecurity

A report reveals 25% of CISOs are replaced after ransomware attacks, highlighting corporate pressures despite external factors influencing security failures. Experts stress the importance of assessing CISO authority and decision-making accountability within organizations.

https://www.csoonline.com/article/4040156/25-of-security-leaders-replaced-after-ransomware-attack.html

NIS2 Is Intended to Make Organizations More Secure, but Will It Succeed?

By CIO / Blog / cybersecurity, NIS2

NIS2 aims to enhance cyber resilience among EU organizations, but many member states have yet to implement it into national law ahead of the October 2024 deadline. An expert roundtable highlighted the varied progress, with countries like the Netherlands facing challenges due to bureaucratic delays. Compliance is viewed as necessary for security, yet many organizations remain reactive rather than proactive. There’s concern about the capacity of CERTs to support compliance efforts. Overall, while NIS2 could foster better security practices, the path to complete implementation remains complex and costly.

https://www.techzine.eu/blogs/security/133821/nis2-is-intended-to-make-organizations-more-secure-but-will-it-succeed/

A New Question For CIOs – Technology Sovereignty

By CIO / Blog / cybersecurity

CIOs should prioritize “technology sovereignty” due to geopolitical tensions affecting global cloud operations, risking business continuity and regulatory compliance. This requires revising IT strategies for resilience by assessing risks, diversifying providers, and establishing contingency plans.

https://www.forbes.com/sites/sanjaysrivastava/2025/08/16/a-new-question-for-ciostechnology-sovereignty/

AI Vibe Coding Meets Its Match in Flow Defending

By CIO / Blog / cybersecurity, AI

Enterprises face a cybersecurity crisis due to rapid software development outpacing vulnerability patching, exacerbated by AI technologies. Exploits can occur within hours of vulnerability disclosure, while patching timelines stretch from 38 to over 150 days, increasing breach costs. A new approach, “flow defending,” is essential, distributing automated vulnerability management throughout the software development life cycle (SDLC) to enhance speed and efficiency, minimize risks, and align security metrics across teams.

https://www.scworld.com/perspective/ai-vibe-coding-meets-its-match-in-flow-defending

Guiding Cybersecurity Compliance: An Ontology for the NIS 2 Directive

By CIO / Blog / NIS2

NIS2Onto is an OWL ontology designed to translate the NIS 2 Directive into a structured format, facilitating cybersecurity compliance by automating verification processes and supporting risk assessments. It interprets legal language into actionable security measures for diverse stakeholders. The article evaluates NIS2Onto through metrics and a practical case study, highlighting its effectiveness in aiding compliance and understanding complex legal texts. Future work includes extending its application and integrating it with other regulatory frameworks. Overall, NIS2Onto aims to enhance cybersecurity governance by providing a comprehensive compliance tool aligned with European Union directives.

https://www.sciencedirect.com/science/article/pii/S0167404825003062

Business Cybersecurity Tips to Align With EU Regulatory Compliance

By CIO / Blog / NIS2

EU cybersecurity regulations have intensified, affecting how businesses manage cyber risk. Directives like NIS2 and the Cyber Resilience Act require companies to adopt structured risk management, ensure operational resilience, and involve all departments in compliance. Key regulations include the GDPR, which mandates data security, and updated laws targeting digital products and services. Effective compliance hinges on governance, technical security, incident response, employee training, and thorough documentation. Businesses can enhance efficiency and gain competitive advantages through robust cybersecurity practices.

https://business-review.eu/tech/business-cybersecurity-tips-to-align-with-eu-regulatory-compliance-287524

What’s the Right Number of AI Projects? It Depends.

By CIO / Blog / AI

AI project numbers vary by enterprise, influenced by goals, budget, readiness, tech stack, and workforce. Companies average 21 AI projects, but there's no definitive count for optimal projects. Leaders should assess alignment with business objectives, prioritize high-ROI projects, and avoid overspending. Many firms are consolidating AI initiatives amidst cost pressures and market volatility, with a focus on effective use cases while trimming ineffective ones.

https://www.ciodive.com/news/enterprise-AI-project-sprawl-bloat-expansion-spending/757604/

Author name: CIO