Information Security Governance: Strategies for Working with the Board of Directors
This one-of-a kind class will review the essential components of information security governance, how to develop an effective governance framework, assess successful strategies and tactic to effectively engage senior management, board of directors and, other key stakeholders.
Board of Directors (BOD) have a critical governance role to play in any organizational security program. Their buy-in and support is also critical to your success. If you are not engaged with your board of directors you should be or if you are engaged but you are not seeing the desired results than this course is for you.
Information Security Governance means viewing information security as a critical business function. Effective governance requires management (boards of directors and senior executives) to understand and buy into the key components of an information security and establish a framework to exercise their due diligence responsibilities
In this course, we will review the essential components of information security governance, how to develop an effective governance framework, assess successful strategies and tactic to effectively engage senior management, board of directors and, other key stakeholders.
CISO’s have the responsibility (with other key stakeholders) to assure that an effective governance framework is in place. Too often information security is cited as an inhibitor of a company’s strategy rather than an enabler. This characterization is often the result of a poorly designed or implement information security governance framework.
Specific topics covered in this session include:
- Aligning information security strategy with the business strategy
- Leveraging benchmarking information and best practices to gain buy-in
- Instituting a Risk Assumption and Acceptance framework that truly maintains accountability and transparency.
- Finding and maintaining the ‘risk tolerance sweet spot for the organization. (desired State)
- Proven communication Strategies & Tactics for Senior Management and the Board.
At the end of this course practitioners should have additional insights in developing their governance program, reviewing tools to evolve and enhance current programs and specifics guidelines for effective board engagement and communications strategies. The goal is to increase awareness, understanding of the issues, opportunities, and possible approaches related to information security as a governance concern that keeps the BOD engaged.
What our participants say about the CISO Sales Workshop
The information shared was very practical including both tactical and strategic tips. Highly recommend the session to all going in front of senior management or the board.
Craig did a great job of providing key points and best practices for working with the Board of Directors.