The Cybersecurity Manager's Guide: The Art of Building Your Security Program
內容描述
If you're a leader in Cybersecurity, then you know it often seems like no one cares about--or understands--information security. Infosec professionals struggle to integrate security into their companies. Most are under resourced. Most are at odds with their organizations. There must be a better way. This essential manager's guide offers a new approach to building and maintaining an information security program that's both effective and easy to follow.Author and longtime infosec leader Todd Barnum upends the assumptions security professionals take for granted. CISOs, CSOs, CIOs, and IT security professionals will learn a simple seven-step process that will help you build a new program or improve your current program.Build better relationships with IT and other teams within your organizationAlign your role with your company's values, culture, and tolerance for information lossLay the groundwork for your security programCreate a communications program to share your team's contributions and educate your coworkersTransition security functions and responsibilities to other teamsOrganize and build an effective infosec teamMeasure your progress with two key metrics: your staff's ability to recognize and report security policy violations and phishing emails
作者介紹
Todd Barnum is the current CISO of GoPro where he works with world class engineers to design, build and secure GoPro cameras, mobile apps, video editing software, cloud systems, and drone products. Although GoPro is known for manufacturing the worldâ s best action camera, the company also develops multiple software applications enhancing the use of its camera and drone products. The company has 20 offices worldwide, and is thought to be one of the worldâ s largest â cloud onlyâ? companies.Prior to coming to GoPro, Barnum was VP and Chief Information Security Officer at Warner Bros. Entertainment. He has also served as CISO of Amgen, VP of the InfoSec consulting practice at Forrester. He has a degree from Stanford Law School and a Master of ScienceTelecommunications, and Computer Systems.