According to Steve Morgan, founder of Cybersecurity Ventures, a lack of access to executives and the board stands out as a significant warning sign. This is one of the primary reasons chief information security officers (CISOs) choose to leave their positions. Morgan also highlights insufficient support as another major factor contributing to CISO turnover.
In Splunk's 2025 CISO report, it was revealed that only 29 percent of respondents reported having a sufficient budget for cybersecurity. In contrast, 41 percent of board members felt that the budgets were adequate, indicating a significant discrepancy in perceptions of funding.
Deb Radcliffe, an investigative journalist and analyst specializing in computer crime and security, discusses in her feature how CISOs can shift organizational culture to transform negative indicators into positive outcomes. However, she notes that understanding when and how to implement these changes relies on various factors.
Radcliffe's article addresses a common dilemma faced by CISOs: Should I stay or should I go?
As Morgan mentioned in a LinkedIn post, "That's also the name of a song by The Clash." He reminds us of the lyrics: "If you don't want me, set me free." He emphasizes that if an organization values its CISO, it should compensate them appropriately and include them in board discussions. Otherwise, they may find themselves without the expertise they need when it matters most.
