When it comes to picking the right person for an important job in making sure computer systems are safe, folks often think about things like schooling, work achievements, and how well someone works with others. This is super important for big jobs like Chief Information Security Officers (CISOs) and their right-hand people. But there’s a big question on the table: What about how someone handles a crisis? After all, staying calm and making smart decisions when things get tough is key.
It turns out that not all types of experience in handling bad situations carry the same weight. Some studies show that the closer a person is to a crisis, the more likely they are to let that experience shape their future judgments, and not always in the best ways. For example, if a CISO had a rough time during a cyber breach, they might not think clearly about using new tech or they could get too cozy with an insurance provider, limiting their ability to come up with fresh, smart security moves.
Unlike other fields, where folks might get emotionally wrapped up in a crisis, cybersecurity folks actually seem to handle things better when they’re close to the action. They understand that every cyber problem is a special snowflake and needs to be treated that way. On the flip side, people who just watch from the bleachers can sometimes make the mistake of comparing cyber crises to stuff they’ve seen before, even if those aren’t really good comparisons.
So, what does this mean if you’re hiring someone to protect your company from cyber baddies? Go ahead and value crisis experience, but keep a sharp eye on those who’ve only been spectators. You want to find someone who’s been through the thick of it – they’re the ones more likely to keep their head on straight during future digital emergencies.
Now, figuring out if someone has the right kind of crisis chops is a bit of a puzzle. It’s best to look for folks who have dealt with the whole shebang: feeling the heat of the attack, thinking through the problem, and then rolling up their sleeves to fix things.
These insights suggest that decision-makers like CISOs should not only look for candidates with crisis skills but should also support paths that build these experiences. This includes getting involved in different scenarios and planning exercises. It’s also a reminder that you want someone who’s really good at a couple of things, rather than okay at a lot.
For more insights on how to factor crisis management skills into your cybersecurity hiring process, you can visit this link for additional information: www.csoonline.com/article/2501237/evaluating-crisis-experience-in-ciso-hiring-what-to-look-for-and-look-out-for.html.
If you’re grappling with this topic and trying to ensure your company hires the best folks for keeping your digital world secure, Diversified Outlook Group can lend a hand. Send us an email at support@diversifiedoutlookgroup.com, and we’ll help you navigate these tricky hiring waters to make sure your team is ready for any cyber challenges that come your way.