Building your plan for the first 90 days
As the new CISO, there is a real need to get the balance right across the abovementioned three dimensions – People, Process, and Technology. You won’t succeed if you don’t strive to fight your own natural instincts. We all are naturally more gifted in one of these dimensions and this will be your strength. While this will serve you well, this new position requires broader mastery.
The suggestion I make to you is that you develop your own 90-day plan after you have read this whole chapter. Once you have understood the end-to-end context, it will make sense to put “pen to paper” and start drafting your own plan. I discussed in the previous sections the intricacies of my 90-day plan template, which you can reuse or modify as you see fit.
My CISO 90-day plan was to both guide myself and inform my stakeholders where I planned to spend my time. By default, it also detailed where I wouldn’t be spending...
