The CISO role has evolved over the past 25 years from primarily technical beginnings in many organizations to a role requiring more leadership, business savvy, and data-awareness. CISOs are managing risk, reporting to the board, managing security incident communications, planning strategies, and implementing multiyear plans to increase the maturity level within their organizations. Security professionals must decide where they would spend most of their day and must be honest about the answer to true career and happiness. CISO must embrace ambiguity and uncertainty as they navigate the organization, with each department head vying for the same pot of critical funds.”]
Source: https://www.darkreading.com/careers-and-people/transforming-into-a-ciso-security-leader