The responsibilities of CISOs vary by type and size of company. The Chief Information Security Officer (CISO), typically is the most senior cyber security executive at a company. In some companies the title can vary with other common titles of Chief Information Technology Officer (CITO), Corporate Security Executive or Information Security Director.
Typically a CISO will look after security operations involving responsibilities spanning real-time analysis of threats, monitoring firewalls, entry points, databases and other internal environments. Chief Information Security Officers also have a responsibility for cyber risk and cyber intelligence, data loss and fraud prevention, identity and access management & security architecture.
The CISO role has evolved from being focused solely on implementing and managing security control technology, to more of a consultative, business process, risk management professional. The CISO may also work alongside the CIO (Chief Information Officer) to keep up-to-date with cyber security products and services.