Information Security Management In The Enterprise

Joe Dupre, Sonoma State University, IT

Stevenson Hall 1300
11:00 AM - 11:50 AM

Information and knowledge are valuable and worth protecting. We need efficient methods of protection in large homogenous environments. How do you get smart people with divergent ideas moving in the same direction on information security? Do the following: strategic alignment, risk management on all issues, provide value -reduce support costs, enhance competitive stance, assure success of strategy deployment resource management -people, technology, process assurance process integration -get connected and involved with other security groups in your enterprise. Performance measures -Did we do what we set out to do, does the data indicate we should be doing something else? Multiuse of metrics. This talk is based on the curriculum for the ISACA.org Certified Information Security Manager (CISM) certification. Pizza after talk in Darwin 28