Today's security executives are increasingly expected to possess a strong business acumen in addition to their expertise in managing risk. This means they must have the ability to communicate the mission of the security program to all levels of the organization, from the board down to the end user.
Michael Santarcangelo, who works with security teams to troubleshoot communication issues and accomplish their goals, suggests security leaders ask three simple questions at the outset of any project to achieve immediate clarity:
- What problem are you trying to solve?
- What value will the solution create?
- What is the impact of that solution?
Santarcangelo made some really good points on the third bullet that we focus on with our clients: "What is the impact on the day-to-day for the end users?" (and is that feasible?)
Click below to read the full article and listen to the interview at the BankInfoSecurity website:
https://www.bankinfosecurity.com/interviews/3-questions-successful-security-leaders-should-ask-i-3676