The CISO Storm: Why the Role Must Evolve into the Chief Digital Risk Officer

CISOCDROCRO
Written By Samantha "Sam" Jones

The Chief Information Security Officer (CISO) is at the center of the storm—a whirlwind of cyber threats, regulatory demands, digital transformation, and fragmented risk management practices. Once a purely technical role, the CISO has been forced into a high-stakes balancing act, trying to secure not just IT infrastructure but the entire digital ecosystem of modern enterprises.

Meanwhile, cyber risk has become the defining business risk of the digital age. Yet, most organizations still treat the CISO as an IT specialist rather than a true enterprise risk leader. The problem isn’t just how CISOs are perceived—it’s that they are stuck in a broken system.

Samantha "Sam" Jones

Samantha “Sam” Jones is the lead research analyst for the IRM Navigator™ series and a core contributor to The RiskTech Journal and The RTJ Bridge. As a digital editorial analyst, she specializes in interpreting vendor strategy, market evolution, and the convergence of technology with enterprise risk practices.

As part of Wheelhouse’s AI-enhanced advisory team, Sam applies advanced analytical tooling and editorial synthesis to help decode the structural changes shaping the risk management landscape.

Sign up to read this post
Join Now
Previous

How Companies Can Employ AI for Compliance and Risk Management—Safely and Effectively with IRM
Next

Why CISOs Are Struggling—And How Integrated Risk Management (IRM) Is the Answer