Ian Keller is a security director and CyberEdBoard executive member. He says CISOs spend their days trolling through data, doing threat hunting and building walls around data. The new skills you need to learn or get better at revolve around all the nontechnical aspects of being a CISO. You are mandated by the chairperson of the board of directors and the CEO to keep the companys information safe. You also have personal liability, if you are unlucky enough to hold the Privacy Officer designation under GDPR, and you are the first one sacrificed when things go wrong.”]
Source: https://www.cuinfosecurity.com/blogs/troublemaker-ciso-do-you-know-what-you-should-be-doing-p-3130