The situation the new CISO finds on arrival is often different to what they were expecting, but who’s to blame? A painfully recurrent complaint among Chief Information Security Officers (CISO) is the disconnect between what they were promised during the recruitment process, and the actual situation they find upon starting the job. Indeed, it is […]
The First 100 Days of the New CISO: Expectations vs. Reality Read More »
While large corporations invest millions of dollars into their marketing and content strategy every year, smaller businesses have to operate within much tighter budget constraints. For start-ups in particular, developing an online presence is vital from the outset. That involves not only making the right choices, but being creative about how their budgets are managed.
How to Grow Your Online Presence on a Shoestring Read More »
Constant firefighting downgrades the role and the CISO must fight to avoid its gravitational pull With regards to many other C-level roles, the Chief Information Security Officer (CISO) position is a fairly recent creation for many organisations. Although it started to emerge over 15 years ago, it has been spurred further recently by growing concerns
A “people” perspective on GRC models It is no big secret that the “Three Lines of Defence” model underpinning many GRC practices in large firms is poorly understood and poorly applied at grass-root levels. Anecdotal evidence we observe in the field every day suggests that many organisations operate it in a variety of hybrid fashions
The “Three Lines of Defense” Model Only Works On Trust Read More »
