Security Management Strategies for the CIOAccess "Office Politics"
This article is part of the July/August 2007 issue of CISO survival guide: 18 of the best security tips
Survival 101 Succeeding in a pressure-filled world of auditors and cyberthreats requires skills in business, technology, people and more. With a load of regulatory requirements, auditor scrutiny and evolving cyberthreats, it's a pressure cooker for an information security executive these days. How's a security manager supposed to survive, let alone succeed, in the enterprise? A big part of the answer has become a CISO mantra: Technology skills aren't enough; a security professional also needs business know-how. A successful one understands how the business works and can speak in terms the C-suite comprehends. "We're there to facilitate the business, not hinder it. In order to do that, you have to be able to pull your head out of the ones and zeros and speak intelligently to people who don't understand the ones and zeros," says Dave Lewis, senior information security officer at the Independent Electricity System Operator (IESO) in Ontario, Canada. Some security professionals are so focused on blocking attacks that they overlook how a threat affects their ... Access >>>
Access TechTarget
Premium Content for Free.
What's Inside
Features
-
-
Emerging Technologies: How to secure new products
New business initiatives mean new threats.
-
Protecting Your Brand
Customer confidence is at risk when a breach occurs.
-
Securing Extranets
Is perimeter security viable with Swiss cheese networks?
-
At Your Service: Veracode's SaaS-based application analysis
Veracode
-
Metasploit Framework 3.0 Product Review
In this product review, learn everything about the Metasploit Framework 3.0, a penetration testing tool for Linux and Windows platforms.
-
Emerging Technologies: How to secure new products
-
-
Office Politics
Success requires skills in business, technology and people.
-
Antivirus: ESET's NOD32 Antivirus 2.7
ESET's NOD32 Antivirus 2.7
-
Unified Threat Management: Secure Computing's Sidewinder 2150 v7
Secure Computing's Sidewinder 2150 v7
-
Encryption software vendors can expect challenge from hardware front
Until now, the laptop encryption market has belonged to software vendors. Learn how all that has changed.
-
Endpoint Security: F-Secure's Client Security 7.0
F-Secure's Client Security 7.0
-
Office Politics
-
Columns
-
Ping: Dave Drab
Dave Drab
-
Perspectives: Smoke and mirrors certifications
Professional organizations use ethics policies to protect their certifications instead of promoting ethical behavior.
-
Editor's Desk: Freeing Julie Amero
Justice Served
- Viewpoint: Background check faux pas
-
Ping: Dave Drab
More Premium Content Accessible For Free
Next-generation firewalls play by new rules
E-Zine
Firewalls started their journey to the next generation at about the same time as the Star Trek TV series. While the products have advanced with ...
Developing your endpoint security management transition plan
E-Handbook
This TechGuide will help you develop your endpoint security management transition plan. Articles focus on overcoming the challenges of Web-based ...
Unlock new pathways to network security architecture
E-Zine
Network security architecture is showing its age at many organizations. With new technology, different data types, and use of multi-generations of ...