Voices of DGIT | By Debbie Waller , HR & Talent Manager at DataGroupIT
For a long time, the role of the CISO was clear-cut, manage the firewalls, respond to incidents, and keep the danger at bay. But that’s no longer enough.Today’s digital economy demands more, and the smartest businesses know it.
Across Africa and beyond, CISOs are stepping into roles that go well beyond IT. They’re earning a seat at the table not just as protectors, but as partners in growth. They’re shaping conversations around trust, innovation, and risk.
This isn’t coming. It’s already happening.
A New Role, A New Mindset
Cybersecurity is no longer just an IT issue. According to Gartner, 88% of boards now view cyber as a core business risk, and PwC notes that over 60% of CISOs now report directly to the CEO or board. These shifts show how far the role has come, from the IT basement to the boardroom.
From my HR perspective, I’ve seen how powerful it is when companies move beyond hiring a CISO to protect, and instead, truly empower them to enable and lead.
What the Modern CISO Really Brings
The best CISOs we’ve encountered don’t just understand security, they understand the business. They:
- Turn cyber risk into commercial priorities
- Bridge gaps between IT, product, and marketing
- Speak the language of growth, not just governance
- Lead with trust as a value driver, not a tick-box exercise
Old question: “Do we need another SOC analyst?” New question: “How do we help sales and product teams move faster, safely?”
Cybersecurity as a Growth Enabler
Today, trust is a competitive edge. Regulatory demands are reshaping how businesses go to market, and resilience is no longer a nice-to-have. It’s essential.That’s why cybersecurity can’t sit on the sidelines. It needs to be:
- Fully visible in strategic planning
- Credible in the boardroom
- Embedded into innovation from the outset
When it’s done right, cyber doesn’t slow things down. It creates momentum. It drives faster product cycles, supports confident market entry, and boosts investor confidence.
Building the Next Generation of CISOs
Here in Africa, we’re facing a massive cybersecurity talent gap, over 500,000 roles unfilled.If we don’t take ownership of growing and retaining our own future CISOs, we’re opening the door to more than just a talent problem. We’re creating exposure.
As HR leaders, as boards, as a community, we have to shift how we think about the pipeline. Credentials are important, but they’re not enough.
What sets future CISOs apart is:
- Curiosity instead of certainty
- Influence over instruction
- A working grasp of finance and risk
- The ability to earn trust across the business
We’ve got to stop thinking of CISOs as firefighters, and start preparing them as business partners.
It’s Happening. The Only Question Is: Are We Ready?
This shift from technician to executive is already underway.The organisations that embrace and support it will be the ones that adapt faster, grow stronger, and lead in the face of digital risk.
At DataGroupIT, we believe our CISOs are not just here to defend the future. They’re helping shape it.