CISO Leadership: Essential Principles for Success


Posted on by Ben Rothke

CISO Leadership: Essential Principles for Success is a valuable guidebook for the serious information security professional. 

Contemporary information security is a relatively new specialty that continues to evolve. Even newer is the job title "chief information security officer." As a result, those who don the CISO mantle do so without an established playbook. 

In CISO Leadership: Essential Principles for Success, a number of experienced and highly successful information security practitioners share their collective experiences--including mistakes. They provide valuable advice for those aspiring to become information security leaders. 

A common theme throughout the book's 19 chapters is the idea that information security is about more than simply amassing technical knowledge. Rather, it is the combined set of skills that include leadership, team building, communication, risk assessment, and corporate business savvy. Lack of these skills has often resulted in a CISO's premature termination. 

The book is divided into three sections all centered on the issue of leadership. Part I is titled "A Leadership Disconnect," while Part II "Leadership Mandate" features chapters on fundamental topics, such as career advancement, security as a business function, business drivers, and more. Part III, "Leadership Evolution," covers business savvy, organizational culture, selling security, and more.

For those with a forward career path in information security, CISO Leadership is a valuable guidebook. The authors' "war stories" can help you avoid the bumps as you go down that road. The breadth and depth of the experience of the authors makes this a unique book that you can use to further your information security career. 


Contributors
Ben Rothke

Senior Information Security Manager, Tapad

Identity

data security identity management & governance

Blogs posted to the RSAConference.com website are intended for educational purposes only and do not replace independent professional judgment.  Statements of fact and opinions expressed are those of the blog author individually and, unless expressly stated to the contrary, are not the opinion or position of RSA® Conference, RSA Security LLC or any other co-sponsors. RSA Conference does not endorse or approve, and assumes no responsibility for, the content, accuracy or completeness of the information presented in this blog.


Share With Your Community