CIO.works – Page 25

Tech Giants Push Back at a Crucial Time for the EU AI Act

Tech giants are opposing the EU AI Act, which is notable for its general principles without implementation details. Key compliance requirements are detailed in a forthcoming Code of Practice, facing delays that some attribute to industry pressure. Major companies like Meta and Google challenge the regulations, arguing they hinder competitiveness and seeking changes. Concerns center around copyright in AI training and independent risk assessments. The fight over the AI Act highlights the balance between innovation and safety as global regulatory actions intensify.

https://www.pymnts.com/artificial-intelligence-2/2025/tech-giants-push-back-at-a-crucial-time-for-the-eu-ai-act/

Chief Information Security Officer (CISO)

By CIO / C / cybersecurity

CISO oversees organization's info security strategy, risk management, policy development, team leadership, and incident response. Responsible for safeguarding data and ensuring compliance with regulations.

Center for Internet Security (CIS)

By CIO / C / cybersecurity

CIS: Non-profit focused on improving cybersecurity. Develops benchmarks, guidelines, and best practices. Offers tools like CIS Controls and CIS-CAT for effective security management. Provides resources for organizations to enhance defense against cyber threats.

CIS Benchmarks

By CIO / Blog / cybersecurity

CIS provides cybersecurity benchmarks for various platforms, aimed at helping organizations mitigate threats. These include configuration guidelines for over 25 vendor products, tools for assessing compliance, and a variety of resources like the CIS SecureSuite and webinars for implementation support. Membership benefits include access to exclusive tools and community development.

https://www.cisecurity.org/cis-benchmarks

OWASP Application Security Verification Standard (ASVS)

By CIO / O / software development, cybersecurity

OWASP ASVS: framework for assessing application security. Defines security requirements, levels (1-3) for assurance, guides development lifecycle, promotes secure coding, testing practices. Aims to standardize security evaluation in software projects.

What CISOs Need From the Board: Mutual Respect on Expectations

By CIO / Blog / CISO, cybersecurity

CISOs need mutual respect and understanding from their boards to effectively navigate cybersecurity challenges. Boards require CISOs to communicate risks clearly and ensure compliance with regulations while maintaining transparency. In turn, CISOs need strategic support, accountability, resources, and the board's involvement in shaping security culture and direction. A collaborative relationship enhances organizations' ability to address cybersecurity risks effectively.

https://www.csoonline.com/article/3829678/what-cisos-need-from-the-board-mutual-expectations-respect.html

Council Post: The Growing Cybersecurity Skills Gap: a Breach Waiting To Happen

By CIO / Blog / training, cybersecurity

Cybersecurity faces a severe talent shortage, risking sensitive data and systems as organizations struggle to find qualified professionals. Nearly 90% of leaders attributed breaches to this skills gap, with over 700,000 roles unfilled. Human error causes 88% of breaches, highlighting the need for effective training. To address this, companies should invest in enhanced education, role-based training, and automation. Utilizing gamified, hands-on training can engage potential talent and effectively prepare them for real-world threats, helping to bridge the skills gap and improve cybersecurity defenses.

https://www.forbes.com/councils/forbestechcouncil/2025/02/26/the-growing-cybersecurity-skills-gap-a-breach-waiting-to-happen/

Connolly Calls on OPM to Reverse CIO Classification Change

By CIO / Blog / career, responsibilities

Rep. Gerry Connolly urges OPM to reverse the reclassification of federal CIO positions from career-reserve SES to general SES. He argues this change undermines the bipartisan effort on federal IT by politicizing an essential role, requiring long-term strategic planning. Connolly seeks a briefing from OPM on this matter due by March 11, emphasizing the independence necessary for CIOs to manage IT projects effectively without political influence.

https://federalnewsnetwork.com/cio-news/2025/02/connolly-calls-on-opm-to-reverse-cio-classification-change/

The New Role of the CIO

By CIO / Blog / CIO

CIOs are evolving from IT managers to strategic partners in retail, focusing on technology and operational integration. To succeed, they must build relationships across departments, advocate for future tech developments, structure IT teams for collaboration, and create a forward-looking roadmap. These changes enable CIOs to transform tech departments into proactive business partners, driving retail innovation and growth.

https://www.mytotalretail.com/article/the-new-role-of-the-cio/

CIO Hiring on the Rise: How to Land a Top Tech Exec Role in 2025

By CIO / Blog / CIO, career

CIO hiring is increasing in 2025, driven by demands for AI, business transformation, and technological leadership. Candidates must blend technical expertise, business acumen, and change management abilities to succeed. Key hiring sectors include financial services, healthcare, and energy, with strong regional markets in tech hubs. Pay is competitive, often with bonuses for transformative CIO candidates. Organizations seek CIOs who can navigate the evolving tech landscape and drive measurable business results. Candidates should highlight their experience, particularly in overcoming challenges, to stand out during interviews.

https://www.cio.com/article/3829299/cio-hiring-on-the-rise-how-to-land-a-top-tech-exec-role-in-2025.html