Security chief Andrew Obadiaru’s to-do list for the upcoming year will be familiar to CISOs everywhere: advance a zero-trust architecture in the organization; strengthen identity and access controls as part of that drive; increase monitoring of third-party risks; and expand the use of artificial intelligence in security operations.

“Nothing is particularly new — maybe AI is newer, and the pace at which it’s all going keeps increasing — but we need to do better at all of it in 2025,” says Obadiaru, CISO at Cobalt, which offers penetration testing as a service.

Obadiaru’s priorities mirror those listed by other CISOs on multiple reports, including Foundry’s recent Security Priorities Study, that show security leaders doubling down on security fundamentals while also layering in newer elements — namely AI.

Despite overall similarities in objectives among security leaders, CISOs are also prioritizing based on their organization’s unique needs, based on the maturity of their security posture, as well as their market position, industry, and other differentiating factors.

0 seconds of 16 minutes, 30 secondsVolume 0%

Leading-edge CISOs are also implementing additional accountability strategies to ensure their teams know the organization’s security priorities and that other executives and business leaders do their part to help secure the enterprise.

Accountability as a priority is essential if CISOs want to finish 2025 in a stronger position than when the year started, says David Chaddock, managing director for cybersecurity at digital services firm West Monroe.

Stay updated with SOC News for cutting-edge security innovations and expert industry insights! 

Source : https://www.csoonline.com/article/3809187/cisos-top-12-cybersecurity-priorities-for-2025.html