Digital risk officer: An emerging job profile
Business functions within enterprises are evolving into the digital realm, exposing critical enterprise assets to digital security threats and risks that were unheard of previously. To mitigate these risks, a new job profile of information security professionals having sound experience in digital risk management strategies is emerging.
Within certain industries like manufacturing, telecom, retail and oil and gas there are two different technology groups which function.
- One is the Operation Technology (OT) group which manages a network of various electronic devices, sensors and software for controlling and monitoring equipments such as plant machineries, switches, antennas, transceivers and others. This group consists of mechanical engineers who manage the daily functioning of all operation technologies of the business
- The other is the Information Technology (IT) group which manages the core IT infrastructure and the various enterprise applications which the business uses. The IT group typically consists of tech professionals
This is calling for digital risk mitigation professionals with deep domain knowledge of how to proactively assess and address potential risks that could impact the digital information generated in various formats, by various business functions.
Emergence of digital risk officer profiles
Gartner, the global IT research and advisory firm, recently came out with a report highlighting the emergence of IT, OT, Internet of Things (IoT) and physical security technologies having inter-dependencies that require a risk-based approach to governance and management.
The report highlighted that digital risk management is the next evolution in enterprise risk and security and that by 2017, one-third of the large enterprises engaging in digital business models and activities will have a digital risk officer (DRO) role or an equivalent.
Role of a digital risk officer
Though the role of DRO is centered on security and risk management, it is not going to overlap with the role that a chief information security officer (CISO) was traditionally responsible to function in.
“While a CISO and his/her team would continue focusing on securing the IT systems and applications within the enterprise, the CDRO and his team would focus on how to leverage IT to predict, identify and mitigate risks emerging within the organisation, across various levels and business functions,” said Ganesh Ramamoorthy – research director, Gartner.
Giving an example of the DRO’s job role, Ganesh said, “In a manufacturing industry there is increasing convergence of IT systems with digital systems of plant equipments and other such physical assets which are critical to the business. Here, the DRO professionals need to understand the trigger point of security risks which can impact these physical assets and how to proactively and re-actively manage these incidents in the shortest possible time through IT.”
With more and more industries looking at converging engineering systems and business functions with IT solutions, the role of DRO will be indispensable for ensuring enterprise security. This is an exciting opportunity for IT security professionals to keep an eye out for.
You Need any soft-skills Training with placement just contact us Contact number : 8904762432. Website: www.moxiestars.com. Facebook:https://www.facebook.com/moxiestarssolutions. LinkedIn : Moxiestars. Email: info@moxiestrars.com.
Hi guys If u like this post please leave a comment in comment box... comment box will top right of every post and bottom of every post. its useful for me give a better information.. check top of the blog there is menu bar in that go to comments i replied for u r comments because there is no direct option for reply for u r comments. if u want to give any suggestion in bottom of blog there is contact information option please leave a msgs with u r mail id sure i will get u.