oh, wow. I already thought the job of CIO was overwhelmingly stressful! I think the job description is: try to create some guardrails but worry constantly about events way outside your control ruining everything.
No it’s primarily vendor management (according to the CIOs I’ve interviewed).
When you have a network security department unable to articulate its policies, which relies on vendors for everything including expertise, you damn well should worry.
