CIO.works – Page 45

The CIO Mindset, Decoded Ft. Andrea Bergamini, CIO, Orbia

By CIO / Blog / CIO, leadership, technology

CIO Andrea Bergamini discusses the evolving role of technology within businesses in the “CIO Mindset, Decoded” podcast. He emphasizes that technology should be integral to business operations rather than merely supportive. The conversation highlights the necessity for modern CIOs to adapt to complexities like AI adoption and cybersecurity while driving measurable outcomes. Bergamini shares insights from his diverse career, advocating for resilience, continuous learning, and embracing technology as a core aspect of organizational strategy. Each segment of the discussion focuses on leadership traits, prioritizing IT strategies, and leveraging Global Capability Centers for innovation.

https://zinnov.com/podcasts/business-resilience/the-cio-mindset-decoded-how-to-build-scale-and-stay-resilient-ft-andrea-bergamini-orbia/

EU Plans Cybersecurity Overhaul to Block Foreign High-risk Suppliers

By CIO / Blog / cybersecurity, EU, regulation

EU proposes cybersecurity legislation to remove high-risk suppliers from telecom networks to enhance security against cyber threats. The plan aims to improve risk assessments and streamline ICT supply chain certification, allowing for better protection against cyber attacks and enhancing Europe's technological sovereignty.

https://www.bleepingcomputer.com/news/security/eu-plans-cybersecurity-overhaul-to-block-foreign-high-risk-suppliers/

The Value Of The Virtual CISO In Today’s Threat Landscape

By CIO / Blog / CISO, cybersecurity

The virtual CISO (vCISO) model is emerging as a practical solution for small and mid-sized businesses that cannot afford a full-time CISO. vCISOs provide executive-level security strategy and leadership on a fractional basis, helping organizations prioritize controls and improve security posture. Managed service providers (MSPs) and AI can further enhance the vCISO model by scaling security strategy and automating best practices.

https://www.forbes.com/sites/tonybradley/2026/01/20/the-value-of-the-virtual-ciso-in-todays-threat-landscape/

CISOs Are Becoming Ever More Powerful at Work

By CIO / Blog / CISO, cybersecurity

CISOs' roles are expanding, with 52% noting increased responsibilities and 47% at executive levels by 2025. Many face challenges, including manageability issues and understaffing, particularly in non-tech sectors. Collaboration with other C-suite leaders is common, but a significant percentage assert roles are no longer sustainable.

https://www.techradar.com/pro/cisos-are-becoming-ever-more-powerful-at-work-even-more-than-other-c-level-execs

Between the Firewall and the Boardroom: the Role of the CISO in 2026

By CIO / Blog / cybersecurity

CISO's role evolving from technical expert to strategic leader due to rising cyber threats and regulations. They now focus on risk management, resilience, and corporate growth, influencing business processes and culture. Reporting to CEOs, they address security inter-departmental dynamics, ensuring safety amidst innovation. As cyber-resilience replaces the idea of impenetrable defenses, CISOs are held accountable for recovery failures and face personal liability. Their responsibilities now encompass fostering business continuity and adapting to complex digital landscapes, making the role increasingly crucial in corporate strategy.

https://www.computing.co.uk/feature/2026/between-firewall-boardroom-role-ciso-2026

Council Post: The CIO’s Rising Role In Financial Software Decisions: a New Era Of C-Suite Collaboration

By CIO / Blog / CIO, finance, trends

Healthcare AI often fails due to poor implementation, not flawed technology. Success requires aligning AI solutions with existing metrics, understanding the type of AI being implemented, and starting with small, measurable pilots. Effective implementation also involves integrating AI with existing systems, training for adoption, and building a clear ROI model before going live.

https://www.forbes.com/councils/forbestechcouncil/2026/01/20/the-cios-rising-role-in-financial-software-decisions-a-new-era-of-c-suite-collaboration/

The EU AI Act Change That No One Is Talking About

By CIO / Blog / AI, EU, regulation

EU AI Act enforcement delayed to December 2027; significant shift to self-assessment means companies now legally accountable for compliance. Firms must understand AI risks, pursue ISO 42001 certification, meet prEN 18286 requirements, and prepare strategically to avoid last-minute panic, as seen with GDPR compliance issues.

https://www.corporatecomplianceinsights.com/eu-ai-act-change-no-one-talking-about/

A Meta Product Manager With No Technical Background Says Vibe Coding Gave Him ‘superpowers’

By CIO / Blog / product management, software development, vibe coding

Meta product manager Zevi Arnovitz claims vibe coding tools empower non-technical professionals, transforming their roles in product management. Using AI for coding, he feels he has gained “superpowers,” allowing him to build products directly. He emphasizes that while AI enhances capabilities, product managers should avoid complex projects to maintain collaboration with engineering teams. The trend suggests that more workers across roles will become product builders as AI coding tools democratize the development process.

https://www.businessinsider.com/meta-product-manager-vibe-coding-superpowers-non-technical-builder-2026-1

10 Top Priorities for CIOs in 2026

By CIO / Blog / CIO, cybersecurity, trends

Key priorities for CIOs in 2026 include enhancing cybersecurity, consolidating security tools, ensuring data protection, improving team experiences, navigating ERP migrations, driving innovation, and workforce transformation. It's essential for CIOs to adopt agile, comprehensive strategies to manage technological change and risks while fostering an efficient and secure digital workplace.

https://www.cio.com/article/4117023/10-top-priorities-for-cios-in-2026.html

Java Security Code Review: OWASP Patterns for Enterprise

By CIO / Blog / audit, java, software development

Java security code reviews must align with OWASP Top 10:2025, addressing common vulnerabilities in large-scale applications. Emphasis on software supply chain failures and mishandling exceptions is crucial, especially in regulated sectors like fintech and healthcare, where significant risks exist. Effective reviews should include comprehensive analysis of all libraries and dependency management, leveraging tools like Augment Code's Context Engine for enhanced vulnerability detection. Implementing these practices ensures compliance with standards like HIPAA and PCI-DSS while accelerating remediation efforts. Key practices involve automated scans, manual checks, and maintaining robust security frameworks.

https://www.augmentcode.com/guides/java-security-code-review-owasp-patterns-for-enterprise