If i am the CISO for a major publicly traded company there are a lot of options I have as far as security measures I could put into place to ensure the safety of my systems. Obviously I would follow the CIA triad for the best information security which defines the Confidentiality, integrity and availability of the policies. More specifically I would make sure to implement a data loss and fraud prevention to make sure the staff at the company is using the data properly and if something were to happen to the data it could still be recovered and used. Security measures, because having a plan when everything goes wrong is very important and can lead to a faster resolution with less data lost. Lastly I would implement some sort of governance to make sure that the security measures as a whole run smoothly and get the proper funding they need. I would obviously add a lot more but those would be the big three i would keep my eye on.