The historical divide between the boardroom table and the security bullpen has created poorly aligned nomenclature between the two worlds.
As this divide is still being closed out clarity of terms becomes especially important, when negotiating needs, it is easier for people to say no to something that they don’t understand. As an advocate for the security of the business, the data, and the customers, the CIOs objective in the negotiation process is to remove as many paths to ‘no’ as possible.
So how do you make it easy for someone to say yes to enabling your needs? Articulate it in clear terms where the ask, the cost and the outcome are free from ambiguity. Through hundreds of consulting engagements, Secureworks® has identified four things that CIOs need in order to coherently discuss security with the board and negotiate a balance between productivity, strategy execution and security posture improvement that achieves an acceptable risk tolerance. This paper drills down into these four things in detail.