To fulfill their vital role in protecting organizations’ sensitive information, CISOs not only need technical skills, but they also must be adept at navigating organizational hierarchies and securing resources. At the same time, they must contend with an ever-changing regulatory landscape and the growing risk of being held personally accountable for security failures. To assist CISOs in navigating these challenging waters, a panel of retired CISOs, all of whom served at large public companies, recently discussed the evolving CISO role, the impact of legislation and regulation, board access, securing resources, key challenges and mitigating personal risk. This article synthesizes their insights, shared at the RSA Conference 2024. See “Evolving Career Path and Rising Compensation for CISOs” (Feb. 16, 2022).