The Ciso Evolution: Business Knowledge for Cybersecurity Executives (Hardcover)

Learn to effectively deliver business aligned cybersecurity outcomes

In The CISO Evolution: Business Knowledge for Cybersecurity Executives, information security experts Matthew K. Sharp and Kyriakos "Rock" Lambros deliver an insightful and practical resource to help cybersecurity professionals develop the skills they need to effectively communicate with senior management and boards. They assert business aligned cybersecurity is crucial and demonstrate how business acumen is being put into action to deliver meaningful business outcomes.

The authors use illustrative stories to show professionals how to establish an executive presence and avoid the most common pitfalls experienced by technology experts when speaking and presenting to executives. The book will show you how to:

• Inspire trust in senior business leaders by properly aligning and setting expectations around risk appetite and capital allocation
• Properly characterize the indispensable role of cybersecurity in your company's overall strategic plan
• Acquire the necessary funding and resources for your company's cybersecurity program and avoid the stress and anxiety that comes with underfunding

Perfect for security and risk professionals, IT auditors, and risk managers looking for effective strategies to communicate cybersecurity concepts and ideas to business professionals without a background in technology. The CISO Evolution is also a must-read resource for business executives, managers, and leaders hoping to improve the quality of dialogue with their cybersecurity leaders.

學習有效地提供與業務相關的資訊安全成果

在《CISO進化：資訊安全執行長的業務知識》一書中，資訊安全專家Matthew K. Sharp和Kyriakos "Rock" Lambros提供了一個富有洞察力和實用性的資源，以幫助資訊安全專業人員發展他們與高級管理層和董事會有效溝通所需的技能。他們強調業務相關的資訊安全至關重要，並展示了如何將業務知識付諸行動，以實現有意義的業務成果。

作者使用生動的故事來向專業人士展示如何建立執行層存在感，並避免技術專家在與高管交談和演示時遇到的最常見問題。本書將教你如何：

- 通過適當對齊和設定風險承受能力和資本配置的期望，贏得高級業務領導者的信任
- 正確描述資訊安全在公司整體戰略計劃中不可或缺的角色
- 獲取公司資訊安全計劃所需的資金和資源，避免資金不足帶來的壓力和焦慮

這本書非常適合安全和風險專業人士、IT審計師和風險經理，他們希望找到有效的策略，將資訊安全概念和想法傳達給沒有技術背景的業務專業人士。《CISO進化》也是希望改善與資訊安全領導者對話質量的商業執行層、經理和領導者必讀的資源。

MATTHEW K. SHARP is Chief Information Security Officer of Logicworks. He is responsible for security governance, risk management, strategy, and architecture in a business that provides comprehensive cloud services to help customers successfully onboard and operate complex and compliant workloads on the AWS and Azure public clouds.

KYRIAKOS "ROCK" LAMBROS is CEO and Founder of RockCyber, a cybersecurity strategy consulting firm focused on helping firms align cybersecurity to their enterprise business goals. He has extensive experience building security programs and overseeing security architecture, operations, threat intelligence, governance, and risk management.

MATTHEW K. SHARP 是 Logicworks 的首席資訊安全官。他負責在這家提供全面雲端服務的企業中，負責安全治理、風險管理、策略和架構。該企業幫助客戶在 AWS 和 Azure 公有雲上成功上線和運營複雜且符合合規要求的工作負載。

KYRIAKOS "ROCK" LAMBROS 是 RockCyber 的首席執行官和創始人，這是一家專注於幫助企業將資訊安全與企業業務目標相結合的資訊安全策略諮詢公司。他在建立安全計劃、監督安全架構、運營、威脅情報、治理和風險管理方面擁有豐富的經驗。