What advice would you give aspiring CISOs who have immigrated to the US?

1.2k viewscircle icon4 Comments
Sort by:
CISO in Healthcare and Biotech3 years ago

If you come from Europe and are a CISO who has worked in "critical infrastructure" the US will be fairly easy for you.  Otherwise I would expect the US to require harder work than other regions.

CISO in Healthcare and Biotech3 years ago

It certainly helps to have some certifications and work experience that are suitable for a CISO.  Preferably information management systems (ISMS), risk management as well as applicable ISMS audit systems such as ISO 27001, COBIT, CMMI, etc. 

The US laws and regulations will be different than in other regions of the world.  You should be aware of the NIST recommendations as well as Department of Defence regulations.

SVP, Chief Information Security Officer in Education3 years ago

Get ready to work twice as hard as the next person to achieve the same thing, because that's reality. That forced me to become very good at my craft. You have to have the mentality that you're going to be the best that you can be, irrespective of the obstacles. Nobody's going to give you any breaks. I realize that's a horrible statement to some people, but that’s the reality you have to deal with to succeed under those circumstances. You have to be exceptionally good at the things that others may just be competent at. 

Lightbulb on1 circle icon1 Reply
no title3 years ago

Cannot agree more with Andres.<br>I will just add that the above applies when you immigrate to any country, not just the US.<br>

Content you might like

Very high, employees are motivated23%

Fair, but improvements are needed66%

Low, many employees are disengaged7%

Not sure, we don’t measure it often2%

View Results

SASE (Secure Access Service Edge) – Unifying network and security controls at the edge for a cloud-first enterprise100%

DCSA (Data-Centric Security Architecture) – Prioritizing protection that travels with the data wherever it resides or moves

ZTA (Zero Trust Architecture) – Operationalizing “never trust, always verify” across users, devices, and workloads

CSMA (Cybersecurity Mesh Architecture) – Federating security services through an integrated, composable design

View Results