Getting Security Buy-in from Everybody

/
Buy-in of Information Security projects / initiatives / “we should just be doing it” is a tricky thing. While support from senior leaders in the organization is key for resources (i.e. $$$$) and using their name in vain (i.e. “this is a top priority of Mr. Big Pants” or “this ... Read More

What Should Information Security Be Responsible For?

/
In the Enterprise environment it seems there is always a battle around who should be responsible for what in IT. And there is always some manager or director that complains (or his people do it for him / her) that Information Security seems to be over-stepping their bounds. Where is ... Read More