Or it could be that the organization’s funding process turns them into “adversaries for the same dollar,” Cardow says.
Much of these problems stem from what Wilking says is “a lack of shared context and alignment around enterprise risk.”
“The CIO is typically measured on uptime, scalability, and agility, while the CISO is focused on protecting data, ensuring compliance, and mitigating threats. Without a unified view of how those priorities intersect, the two can seem at odds,” she explains. “Too often, cybersecurity gets treated like the gatekeeper instead of a true partner. Teamwork ends up feeling transactional instead of collaborative. At Booking.com we emphasize embedding cybersecurity into business strategy from the start, ensuring it’s part of every conversation about product design, data, and customer trust.”
How to improve a poor relationship
CIOs and CISOs both have incentives to improve a problematic relationship.
