Electronic Books

Th is is the perfect opportunity for information security
professionals to stand out as valued partners by demonstrating the ability to be an advocate in
these areas, and by acting as a bridge for these partners to connect with the key program areas of
a company by way of building risk reduction and compliance measures within business processes.
It is also important to point out in the midst of continued con?¬? dential and sensitive information
disclosures, that working with risk managers and privacy o?¬? cers provides an opportunity to make
clear that security breaches of all types will most certainly continue, to accept this reality as a risk
of doing business, and to ensure the organization has a plan to handle them. Th is point cannot be
stressed enough, as in this regard the information security professional position evolves into that of
trusted guide and ?¬? rst responder. Popular media will continue to dote on ?¬? nding organizations to
blame for breaches and repeat that blame time and again for months or even years. For the CISO to
ensure that his or her leadership has a plan to respond that complements compliance with current
and impeding policy, without taking blame but by accepting responsibility, the partnerships with
chief legal counsel and public a?¬? airs will continue to be as critical as ever. To support decisions in
A Look Ahead
137
this area, CISOs should also maintain consistent relationships with their legislative o?¬? ces, policy
committees, and research and development bureaus to stay abreast of policy and strategic business
developments that will a?¬? ect the tactical and strategic planning of the information security program.


Pages:
249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273