Skip to Content
Computer Security Handbook, Fifth Edition
book

Computer Security Handbook, Fifth Edition

by SEYMOUR BOSWORTH, ERIC WHYNE, M.E. KABAY
February 2009
Intermediate to advanced
2048 pages
80h 12m
English
Wiley
Content preview from Computer Security Handbook, Fifth Edition

CHAPTER 65

ROLE OF THE CISO

Karen F. Worstell

65.1 CISO AS CHANGE AGENT

65.2 CISO AS STRATEGIST

65.2.1 Reliance on Digital Information

65.2.2 Inherent Insecurity of Systems

65.2.3 World Trends

65.3 STRATEGY, GOVERNANCE, AND THE STANDARD OF CARE

65.3.1 Standard of Care

65.3.2 Governance and Accountability

65.3.3 Roles and Responsibilities

65.3.4 Reporting

65.3.5 Monitoring

65.3.6 Metrics

65.3.7 Executive Visibility

65.4 SUMMARY OF ACTIONS

65.5 RECOMMENDATIONS FOR SUCCESS FOR CISOs

65.5.1 Education and Experience

65.5.2 “Culture” of Security in the Business

65.5.3 Alliance with Corporate and Outside Counsel

65.5.4 Partnership with Internal Audit

65.5.5 Tension with IT

65.5.6 Organizational Structure

65.5.7 Responsibilities and Opportunities outside of CISO Internal Responsibilities

65.6 CONCLUDING REMARKS

65.7 NOTES

65.1 CISO AS CHANGE AGENT.

The title of chief information security officer (CISO) has evolved because of the realization that the function of the chief information officer (CIO) is so broad as to require another person to focus specifically on the security elements of information. Another motivation derives from the fact that the CISO can perform functions that are not usually associated with the CIO. Our approach to information security needs to change in response to the disruptive events affecting the network and the boardroom. CISOs should be the change agents to make this happen. This is a shift from the majority of CISOs' emphasis today as senior managers of information ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

AirBnbBlueOriginElectronic ArtsHomeDepotNasdaqRakutenTata Consultancy Services

QuotationMarkO’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.
Julian F.
Head of Cybersecurity
QuotationMarkI wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.
Addison B.
Field Engineer
QuotationMarkI’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.
Amir M.
Data Platform Tech Lead
QuotationMarkI'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
Mark W.
Embedded Software Engineer

You might also like

Computer and Information Security Handbook, 3rd Edition

Computer and Information Security Handbook, 3rd Edition

John R. Vacca
Defensive Security Handbook, 2nd Edition

Defensive Security Handbook, 2nd Edition

Lee Brotherston, Amanda Berlin, William F. Reyor

Publisher Resources

ISBN: 9780471716525Purchase book