As the Chief Information Security Officer (CISO) the protections I would implement are regular backups, network security measures, patch management, employee training, redundancy and failover systems, monitoring and alerting, physical security, and cloud services. When you have all of these security measures in place you could have a very secure company. The regular backups are because it is very important to make sure that if your data does get lost you still have a backup for them. It is very annoying when you can’t keep information that could have taken a while to figure out. Network security measures would be crucial to a publicly traded company because it protects personal information, intellectual property, and financial data and it also allows you to stay ahead of new and evolving threats. You would want patch management because it tries to limit the vulnerabilities that would be exploited by cybercriminals. Employee training is also very important because why would you hire someone if they weren’t good at their job? They should know how to handle many different situations to reduce the amount of human error that can occur. Redundancy and failover systems help the company remain available because it creates multiple copies from backups and reduce the amount of data loss and downtime. monitoring and alerting I believe also goes together with physical security because you need surveillance over your systems to see what is going on if there are any problems that seem to arise. You always want to check on your systems to make sure that you are up and running and the whole process can go smoothly. Finally, I would use cloud services because it can increase or decrease resources based on demand so that you can be cost-effective and not waste money on things that people don’t want.