Ram Charan knows a bit about business credibilityafter all, BusinessWeek recently dubbed Charan the most influential consultant alive. Charan spoke with Boston Scientific CSO Lynn Mattice and CSO Senior Editor Sarah D. Scalet about the present and future role of security. Youll find the full discussion in next months issue, but heres an excerpt.Lynn Mattice: One of the [common] failures identified in your book Execution resulted from the inability of individuals within an organization to envision where they need to go. Security departments have been trying to evolve away from the corporate cop image. What are the expectations from the executive suite on the corporate security function today?Ram Charan: The most important part is the expectation about the reputation of the company. How does lack of security help or hurt the reputation of the company? Reputational risk is very important to companies today, so the security people, in addition to compliance, need to consider the appropriate focus on reputation. That should be a part of the annual report to the board on risk: how they are linking with the reputational risk assessment and what they are doing. Very clear, very simple, very direct. Thats the key.Mattice: Weve seen other organizations throughout the years evolve and gain a more critical position within corporations, elevating up the levels of corporation to join the executive suite. We have seen this happen with IT, with audit, and in the old days with finance. What are your recommendations on how security leaders should change their focus to be able to move up the ranks? Charan: Security people have to really master how the business makes money. Move the security people in their early careers across the functions, then bring them back. If you rotate them into other functions and they succeed, you make a broader person, and that person has a real opportunity to move up the ladder.CSO: If they succeed in another function, doesnt the security department run the risk of losing those people? Charan: Thats a good idea. Lose them. You would create better people. Its a very narrow thinking of one department losing a person. How many CFOs have become CEOs? Lets really kill that narrow thinking. Related content news Sysdig unveils cloud attack graph based on real-time threat data Sysdig also announced a new cloud inventory and agentless scanning capabilities to tackle cloud security risks. By Michael Hill Sep 27, 2023 3 mins Threat and Vulnerability Management Threat and Vulnerability Management Threat and Vulnerability Management feature What’s a cyber incident response retainer and why do you need one? Whether you need to hire a team to respond to any and all cyberattacks or just some hired guns to boost your capabilities, incident response retainers can ensure you’re covered. By Linda Rosencrance Sep 27, 2023 8 mins Cyberattacks Incident Response Security Practices brandpost How an integrated platform approach improves OT security By Richard Springer Sep 26, 2023 5 mins Security news Teachers urged to enter schoolgirls into UK’s flagship cybersecurity contest CyberFirst Girls aims to introduce girls to cybersecurity, increase diversity, and address the much-maligned skills shortage in the sector. By Michael Hill Sep 26, 2023 4 mins Back to School Education Industry IT Training Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe