In the aftermath of the Equifax data breach, fingers pointed in a lot of directions to place blame. In fact, the former CISO of the credit firm was criticized because of her non-technical background, having focused on music. But as a Washington Post article pointed out, it’s not unusual for those in technology to come from other fields, as a tweetstorm with the ironic hashtag #unqualifiedfortech showed. At the same time, some are revisiting what the qualifications should be for an organization’s security chief.

In an opinion piece on CSO, Georg Thomas considers education, experience, and a framework approach to explore what it takes to fulfill the role of the CISO.

Read the full story here.