19 min listen
Structuring the Chief Information Security Officer Organization
Structuring the Chief Information Security Officer Organization
ratings:
Length:
31 minutes
Released:
Dec 23, 2015
Format:
Podcast episode
Description
Chief Information Security Officers (CISOs) are increasingly finding that the tried-and-true, traditional information security strategies and functions are no longer adequate when dealing with today’s increasingly expanding and dynamic cyber risk environment. Many opinions and publications express a wide range of functions that a CISO organization should be responsible for governing, managing, and performing. How does a CISO make sense of these functions and select the ones that are most applicable for their business mission, vision, and objectives?In this podcast, Nader Mehravari and Julia Allen, members of the CERT Cyber Risk Management team, discuss an effective approach for defining a CISO team structure and functions for large, diverse organizations based on inputs from CISOs, policies, frameworks, maturity models, standards, codes of practice, and lessons learned from major cybersecurity incidents. Listen on Apple Podcasts.
Released:
Dec 23, 2015
Format:
Podcast episode
Titles in the series (100)
Change Management: The Security 'X' Factor: In this podcast, Gene Kim reports how a recent security survey found one factor that separated high performers from the rest of the pack: change management. by Software Engineering Institute (SEI) Podcast Series