What Will the IT Team Still Be Responsible For?
A virtual CISO must be up front and realistic about the tasks that will still be the responsibility of campus team members, such as periodic risk assessments, risk appetite exercises and categorization of information assets. Without a true partnership in these areas, you’ll be overwhelmed with alerts. Be wary of the virtual CISO who promises to handle absolutely everything.
What Are the First Steps You’ll Take During a Serious Cyber Incident?
There’s no right answer here, but the virtual CISO must be aware of the many moving parts in a higher education environment and how a textbook incident response can be adapted to account for them. If the CISO doesn’t mention the Federal Educational Rights and Privacy Act, for example, it’s time to look elsewhere.
How Will SaaS Products Fit with Your Security Plans?
Properly integrating Software as a Service security alerts into an on-campus SOC is still a moving target in the security industry. Find out if your prospective virtual CISO has a technically sound answer about how to receive and process this information. Look for someone who understands the difficulty and has a realistic approach to resolving it.