One of my top priorities would be to maintain adequate balance in the CIA triad. Because this is a publicly traded company, it is most likely large in size and has significant growth potential. It also provides a high motive for cyber criminals to try to gain information that would be advantageous to them regarding that stock market. Protecting the data and ensuring its availability is extremely important. This can be done first by establishing a plan which includes a budget, strategies on how to prevent and respond to cyber attacks (virus detection, firewalls, etc.), ensuring data recovery by investing in cloud backup, participating in regular back-ups and updates, and even stress tests. Being proactive in this industry is critical as cybersecurity is a question of “when”, not “if” a cyber-attack will occur. As the CISO, we would determine which cybersecurity framework/s would work best for our company to use as a guide. Establishing network and server redundancy would also be a top priority. I found that 86% of worldwide enterprises report an average downtime cost at over $300k, 15% over $5 million. This would be especially important because at this point shareholders and their monies are involved and nothing good happens when people start losing money. Physical security must not be forgotten about. Cameras, security personnel, locked door alarm systems, authentication and authorization measures including two-factor authentication and access control list, environmental controls, and employee training will all play a part in the basic proactive steps to ensuring availability. By starting here, we can ensure the availability of our systems remain protected.