IT
governance is one of those disciplines that many companies perceive as the
stepchild of information security - until something happens. The newly created
roles of the DPO, or data protection officer, are in tension with the CISO.
This is because many companies have created a dual role in which the student
grades their own homework. With the new edition of the NIS directive, some
responsibilities have been redistributed and now the CISO-DPO relationship must
be re-evaluated. For companies in the EU, mandatory reporting and
quasi-enforced IT-Grundschutz are also chan ...
