
Search Posts


sun | mon | tue | wed | thu | fri | sat |
1 | 2 | 3 | 4 | |||
5 | 6 | 7 | 8 | 9 | 10 | 11 |
12 | 13 | 14 | 15 | 16 | 17 | 18 |
19 | 20 | 21 | 22 | 23 | 24 | 25 |
26 | 27 | 28 | 29 | 30 |
Recent Posts

Categories
Friday, 16 September 2016

Information security used to be part of IT. That has changed recently; security now needs to be independently aligned with the business operations, not just IT operations. The PCI SSC calls this "Business as Usual" (BAU). NIST CSF talks about aligning cybersecurity requirements with business activities. I call this process information security governance and maintain a CSO Online blog on this topic. For a recent post on an approach to alignment between security and the business, go here.

Submit Your Comment
Posted on 09/16/2016 5:26 PM by Frederick Scholl
Comments
No comments yet.