Surge in CISO and DevSecOps Roles Across Global Enterprises Signals Growing Third‑Party Risk Management Demand
What Happened — A roundup of newly posted senior cybersecurity positions (CISO, Application Security DevSecOps Specialist, Control Systems Assistant) was published by Help Net Security on 17 Mar 2026, covering firms in Italy, India, Israel, the USA, and France. The listings highlight a strong demand for leaders who can embed security into development pipelines and manage third‑party risk.
Why It Matters for TPRM —
- Expanding CISO teams indicate organizations are tightening governance, a key control for third‑party risk.
- DevSecOps focus shows supply‑chain security is moving earlier in the software lifecycle.
- Geographic spread underscores the need for consistent vendor risk standards across regions.
Who Is Affected — Technology services (NTT DATA), cloud media (Cloudinary), data platforms (Starburst), public sector (Genesee County), industrial control (Bizzdesign).
Recommended Actions — Review current vendor contracts for CISO‑level oversight clauses, validate that third‑party providers adopt DevSecOps best practices, and ensure your own risk framework aligns with emerging industry expectations.
Technical Notes — No specific vulnerability disclosed; the trend reflects increased hiring for roles that will manage security controls, vulnerability remediation, and supply‑chain assessments. Source: Help Net Security – Cybersecurity jobs available right now: March 17 2026