XYZ is a publicly-traded software development company.
Who is ultimately accountable to the shareholders in the event of a cybersecurity breach?

Question

XYZ is a publicly-traded software development company. Who is ultimately accountable to the shareholders in the event of a cybersecurity breach?

Accepted Answer

Correct answer: D. D. Chief Executive Officer (CEO) — The Chief Executive Officer (CEO) is ultimately accountable to the shareholders for the overall performance and risk management of the company, including cybersecurity incidents. The CFO and CIO handle financial and software-related aspects respectively, while the CISO focuses on cybersecurity measures, but the CEO has the highest level of responsibility to the shareholders.

Certified Chief Information Security Officer (CCISO) — Question 178

Answer options

Correct answer: D

Explanation