CISOs are moving from a tactical response to a more strategic approach to cybersecurity. Organizations used to expanded security oversight on a tool-by-tool basis. This created massive operational overhead with products from various companies. CISOs now realize this approach is unsustainable. Recent research demonstrates a rethinking of their approach to security technology.