Security News > 2020 > July > CISOs discuss cybersecurity in the COVID-19 environment
CISOs are asked how secure their organization is against cyberattacks.
"It's not, how secure are we, it's how ready are we to respond?" said Andrew Stanley, who was one of three CISO participants in the MIT Sloan CIO Digital Learning Series panel discussion Wednesday on "Keeping our organizations cyber-secure in the COVID-19 environment. How secure are we?".
The panelists were asked by moderator Keri Pearlson, executive director of cybersecurity at MIT's Sloan School of Management, what factors they include when evaluating how secure their organization is.
In response to a question about the metrics the security leaders use, Allan said his organization uses the NIST Cybersecurity Framework, which advocates for measuring, protecting, and responding.
Managing risk in an organization involves a discussion around how much money the organization wants to spend, said Stanley.