The Rookie Chief Iso

Topics: Security, Risk, Risk management Pages: 12 (3874 words) Published: May 27, 2013

“The Rookie Chief Information Security Officer”
Bradford Daniels
Professor Steven Brown
SEC 402
17 March 2013

1. a. Create an Organization Chart in which you

i. Illustrate the roles that will be required to ensure design, evaluation, implementation, and management of security programs for the organization. The CISO is the executive responsible for the organization's entire security posture, both physical and digital. CISOs also frequently own or participate closely in related areas such as business continuity planning, loss prevention and fraud prevention, and privacy. CISO Responsibilities:

Lead operational risk management activities to enhance the value of the company and brand. Oversee a network of security directors and vendors who safeguard the company's assets, intellectual property and computer systems, as well as the physical safety of employees and visitors. Identify protection goals, objectives and metrics consistent with corporate strategic plan. Work with other executives to prioritize security initiatives and spending based on appropriate risk management and/or financial methodology. Maintain relationships with local, state and federal law enforcement and other related government agencies. Oversee incident response planning as well as the investigation of security breaches, and assist with disciplinary and legal matters associated with such breaches as necessary. Work with outside consultants as appropriate for independent security audits. The CSO title is also used at some companies to describe the leader of the "corporate security" function, which includes the physical security and safety of employees, facilities and assets. Members of the Information Security Team assist the CISO with design, evaluation, implementation, and management of security programs for the organization. ii. Within your organizational chart, clearly identify the reporting structure for roles such as IT Security Compliaance Officer, Security Manager, CIO, CISO, IT Security Engineer, Privacy Security Professional, and IT Procurement Specialist. Chief Information Officer

The Chief Information Officer (CIO) is accountable for directing the information and data integrity of the enterprise and its groups and for all Information Technology functions of the enterprise. This includes all data centers, technical service centers, production scheduling functions, help desks, communication networks (voice and data), computer program development, and computer systems operations. He or she is responsible for maintaining the integrity of all electronic and optical books and records of the enterprise. The CIO reviews all computerized and manual systems; information processing equipment and software for acquisition, storage and retrieval; and definition of the strategic direction of all information processing and communication systems and operations. He or she provides overall management and definition of all computer and communication activities within the enterprise including responsibility for providing a leadership role in the data to day operations of the Information Technology functions as well as providing direction as the enterprise grows through internal growth and external acquisition. The CIO interacts with the executive management team to monitor and validate the enterprise’s compliance with its security policies, which includes but is not limited to Sarbanes Oxley Section 404. In addition the CIO works closely with the Chief Security Officer of the enterprise Security Manager

Under general supervision, directs information technology security program. This includes developing, implementing, and maturing of security on all hospital IT systems in order to centrally manage physical access, access to systems, educate users of individual responsibilities, and minimize the possibility of malicious access. Guidelines include all...
Continue Reading

Please join StudyMode to read the full document

You May Also Find These Documents Helpful

  • The Rookie Essay
  • The Rookie Essay
  • Chief Research Paper
  • Chief Essay
  • The Rookie Essay
  • Isos Essay
  • Essay about ISO
  • Is the Rookie Ready Essay

Become a StudyMode Member

Sign Up - It's Free