Physical and IT Security Business Alignment Advice
Here are a variety of references that provide excellent insights into aligning security with the business, whether physical or IT security.
|How to align security with your strategic business objectives||This free guidebook from PWC Advisory provides a five-step approach for CISOs to achieve success in their positions: assess, analyze, strategize, align, and communicate. Although this guidebook was published in 2006, its material is still insightful and relevant today.|
|Aligning security with business objectives||In this SecurityInfoWatch.com interview, Tim Giles—former Director of Security, IBM North America—discusses key points of aligning corporate security with the business. Video Length: about 4 minutes||Best Practices for aligning Information Security with Business||In this recent LinkedIn Pulse article, Vimal Mani—former CISO for the Bank of Sharjah, in the United Arab Emirates— outlines Best Practices that have proven to be successful for for aligning Information Security with the Business||Aligning Security Services with Business Objectives: Proven Practices||This 42-minute proven practices video presentation, by Richard Lefler—Dick Lefler, vice president for worldwide security of American Express— presents the ways in which security practitioners and executives can convey the value of security services to business leaders using measures and metrics. It also addresses how to develop and manage security programs that enhance profitability and the company’s ability to reduce shrinkage and loss.||An Enterprise Security Program and Architecture to Support Business Drivers||The article, by Brian Ritchot—a Senior Information Security Consultant with Seccuris Inc—is intended for senior executives within an organization who are trying to rationalize an appropriate balance between the protection and availability of information that supports the business. (And if you are the security practitioner making the business case to a senior executive, this will provide you with a good perspective and some insightful talking points.) The article will also help security practitioners, in particular security architects, understand how to align security initiatives with business goals to deliver an effective security program.|