How have you integrated security considerations into routine IT decision-making processes to break down silos and ultimately close security gaps?

745 views3 Comments

Sort by:

Chief Information Security Officera month ago

Security is now embedded in every aspect of our operations, although our culture is still adapting. For example, we have established standards for email access and now send security risk assessments to vendors. Security is a regular topic at board meetings, and recent incidents have led to revamping help desk processes, including implementing MFA and restricting password resets. The institution is increasingly proactive in engaging with security concerns.

VP of Information Technologya month ago

Managing both IT and security makes integration easier. MFA has been crucial in preventing BEC attacks, and we use tools like Cisco Duo and Microsoft Authenticate. With the shift to SaaS solutions, MFA is essential for single sign-on. Every IT change is evaluated for security implications, including new applications and password management. Security is always the top priority.

Sr. Director, Technologya month ago

The pace of threats has increased, and AI has given bad actors access to advanced tools. Most corporate applications are SaaS, requiring verification of vendor security protocols. We obtain SOC reports and, when necessary, enter into business associate agreements. Security reviews now extend beyond IT to marketing, sales, and other departments.

Content you might like

Any advice for a new CIO planning their first budget for IT? What tips do you have for securing the funding IT needs?

Most of the application team I lead is in Brazil and the global IT leadership (US-based) now wants to move some of that work to a new global delivery center in India to be more cost effective, but I have doubts. The Brazil team is delivering good quality — is cost efficiency enough reason to relocate the work? What are the biggest pros/cons we need to consider?

Which of these areas are you targeting for funding increases in your 2026 cybersecurity budget? (Choose all applicable)

Threat detection & response 51%

Identity & access management 60%

Cloud security 47%

Security awareness training 28%

Other 2%

N/A

View Results

We’re evaluating a new ERP. Our company, PROENERGY is a vertically integrated power partner (gas plant design/build, O&M, manufacturing including our PE6000 turbine, and 2.6 GW ERCOT operations).

Considering: SAP Public Cloud, Oracle Fusion Cloud, Microsoft Dynamics, IFS, and Infor Construction Cloud.

Key needs: manufacturing, complex structure with built-in consolidation/reporting, long-range planning, procurement/inventory, and core accounting.

We use Microsoft Dynamics today for CRM/Field Service. Biggest concerns: implementation partners and support resources.

Would love your thoughts.

Which digital contract lifecycle management tool is your organization leveraging?

Agiloft7%

Conga23%

DocuSign CLM (SpringCM)38%

Apttus6%

Ironclad4%

Coupa (Exari)4%

Other (discuss below)16%

View Results

How have you integrated security considerations into routine IT decision-making processes to break down silos and ultimately close security gaps?

Sort by:

Content you might like

Any advice for a new CIO planning their first budget for IT? What tips do you have for securing the funding IT needs?

Which of these areas are you targeting for funding increases in your 2026 cybersecurity budget? (Choose all applicable)

Which digital contract lifecycle management tool is your organization leveraging?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

How are U.S. CISOs Addressing Liability Risk?

CrowdStrike Outage: Impact And Recovery

2024 Cloud Spending: IT Balances Costs with GenAI Innovations

Are U.S. Organizations Insuring Against CISO Liability Risk?

Building an Effective Executive Succession Plan

Take Your Insights On-the-Go