Why CISOs Fail
The Missing Link in Security Management--And How to Fix It
Description:... Why CISOs Fail: The Missing Link in Security Management-and How to Fix it provides insights as to why and how current security management practices fail at their basic foundation, resulting in overall dissatisfaction by practitioners and lack of success in the corporate environment. The author examines the reasons and how to fix them. The resulting improvement is highly beneficial to any corporation that chooses to pursue this approach or strategy and from a bottom-line and business operations perspective, not just in technical operations. This book transforms the understanding of the role of the CISO, the selection process for a CISO, and the financial impact that security plays in any organization. It also: Provides practitioners with strategies and tools for establishing and maintaining a successful, value-centric internal audit organization, Explores opportunities to gain management support through early wins; methods to systematically identify process improvement opportunities, cost savings and avoidance, and potential revenue recoveries; and tips on marketing and branding the audit organization for maximum impact, Introduces the "Audit Value Factor," a concept to determine the estimated value of a given audit, as well as methods for calculating the return on recommendations made, Outlines Six Sigma methods and techniques to ensure every engagement is value-added, Provides tangible, immediate benefits to the reader through key-takeaway actions and tips. Book jacket.
Show description