Chapter 4: Role of HR in Security
The chief information security officer (CISO) role is one of the most important management positions in recent times, and organizations are increasingly taking a more serious approach to the hiring of such an executive. A CISO plays an integral role in the human resources (HR) department. The main reason for their integral role is the fact that internal security is an essential part of organizational security and, more often than not, security breaches result from the exploitation of an internal security weakness.
Social engineering a staff member, obtaining a password from a staff member, or getting a staff member to click on an email containing an intrusive program meant to help a hacker gain access into a system are some of the main methods that attackers use. Therefore, the HR department plays a critical role in ensuring the security of an organization. Hiring practices must ensure that the right personnel is acquired for the position, and...
