Marlowe Cosby
IT 200 CRN 20192
11/4/2020
Well first and foremost I would ensure I myself am fully equipped with good knowledge of information security and technology myself and am aware of my specific duties and tasks as a Chief Information Security Officer, especially being that in that position you literally watch over so many risks and issues. But one specific method of protection I would implement would be more so focusing on measured risk taking rather than elimination, being that not all are bad and at times even some are beneficial. Also would heavily focus on training and keeping systems up to date as possible with the fast pace changing tech world. And ensure all workers go through some form of frequent training so they are also always learning as well. ensuring system stays up to date, new technology will eat up your outdated system so fast. Also keeping alert out for any possible inside threats. A certain type of prideful, and trustworthy culture should be made as the environment tone as well. Doing these things will keep systems fast, effective and available to consumers.
References
https://www.mckinsey.com/business-functions/mckinsey-digital/our-
insights/protecting-the-business-views-from-the-cios-and-cisos-offices# and
https://www.csoonline.com/article/3332026/what-is-a-ciso-responsibilities-and-requirements-for-this-vital-leadership-role.html