Understanding the role of various stakeholders in an organization
Various stakeholders in an organization play a role that affects the security situation within the organization, therefore a CISO needs to have processes in place that ensure interactions with various stakeholders help in upholding the security posture of the organization—for instance, the employees in an organization pose a security threat to the organization. The CISO develops security policies to keep their actions in check and to ensure they manage threats. Shareholders need to be convinced to release funds to implement various security initiatives. The CISO needs to convince them to support security initiatives by communicating all aspects of the business, the risks involved, and the strategy the CISO and the security team will need to address the various risks. Even the community around the business location plays a role in the security situation and having them on board will help them report any suspected...
