Business understanding key to security, says Elsevier CISO
By Canadian SecurityNews Data Security elsevier
Information security professionals must have a good understanding of the business they support, says David Cass, chief information security officer (CISO) for publishing firm Elsevier.
“They must know what is important to the business and what the key business drivers are so that information security can be aligned with those,” he says.
Many businesses have an increased need for agility and want to be able to test products quickly and adopt “fail-fast” models or expand rapidly, he said.
The cloud is well suited to these cases, said Cass, but security professionals must be able to articulate what the business risks are, and provide adequate protection.
Read the full story on the Computer Weekly website here.
Print this page