Chapter 19

Know Yourself

Abstract

To begin defining an organizational security program, you need to first truly understand your organization. You need to evaluate if there is a proper governance program in place. Then you need to understand the culture of the organization to include job functions, industry, and business drivers. This may include performing a comprehensive assessment of the organization. Ideally, you should collect information from similar organizations to see how you compare.

Keywords

Analysis; Assessment; Industry; Posture; Security
Before you can take any action, you must know yourself more than any other entity. You need to know what you need to protect. You need to know the resources available to protect an organization. You need ...

Get Advanced Persistent Security now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.