Chief information security officers (CISO), security consultants and other security personnel constantly face the difficulty of reaching across a cultural divide to communicate our concerns to business leaders such as CEOs and their C-level and board colleagues. We often lack shared assumptions, concepts, terminology, and priorities; our job usually involves executive education in addition to the other two components of the acronym ATE - awareness, training and education.

Many security writers have struggled with the task of communicating our point of view to our business colleagues; readers may want to check the following essays I wrote for that purpose to see if they can be helpful:

* Implementing Computer Security: If Not Now, When? This little paper reviews key threats to information and urges managers not to wait in developing and implementing security policies. 

* Net Present Value of Information Security. Thoughts about ways of presenting information security as more than just loss-avoidance. 

* Securing Your Business in the Age of the Internet. Five pages this time to convince your bosses to pay attention to INFOSEC. 

* Security on a Budget. About 40 minutes of narrated lecture on the key elements of managing information security effectively. (Also in MP3) 

* What's Important for Information Security: A Manager's Guide. Yet another attempt to reach managers who are not yet interested in security. 

Much more valuable than my scattered writings is a compact little book called A Seat at the Table for CEOs and CSOs: Driving Profits, Corporate Performance & Business Agility by Jackie Bassett and Daniel Rothman and edited by Raquel Filipek. 

At 134 pages of clear, uncluttered prose, this work should be in every CISO's library - perhaps in more than one copy so that we can lend them out! The authors explore a point of view with which I know many of us will concur: that security is now a critical success factor directly related to strategic planning at the highest levels. Their insights and explanations will reach intelligent business colleagues across the spectrum of industries and even non-profits and government agencies.

Jackie Bassett, MBA, is the founder and CEO of BT Industrials. She is a business consultant with extensive experience in strategic planning and has written for SecurityInfowatch, ITAudit, and other publications as well as being a guest speaker at many events including ISACA Annual conferences.

Whitepapers

• The Trend from UNIX to Linux in SAP(r) Data Centers
• Getting in Compliance With Government Data Regulations By Leveraging Online Security Technology
• How to Offer the Strongest SSL Encryption
• Maximizing Site Visitor Trust Using Extended Validation SSL
• Seven Steps to Reducing your Security Risk
• The Latest Advancements in SSL Technology

View more SECURITY whitepapers

Webcasts

• The Secure Web Gateway. Mission Critical For Business - Webcast
• Mobile Data Security
• Best Practices for Deploying WAN Optimization for Disaster Recovery
• Key Considerations for a Successful 802.11n Deployment
• Solutions to the Toughest IT Challenges in Remote Offices
• Lowering the Cost of Email Archives

View more SECURITY webcasts

Special Reports

• The Evolution of Network Security
• Taking Virtualization Up a Notch
• The self-managed network

View more SECURITY special reports