Chapter 7: Bringing Stakeholders On Board
Stakeholder onboarding refers to the process of chief information security officers (CISOs) bringing all the relevant stakeholders of an organization on board with their security planning. The reason for CISOs needing to bring stakeholders on board is because of the costly activities of security planning and implementation. Security initiatives, which form the core role of a CISO in an organization, increasingly need more resource allocation to ensure their effectiveness.
The threat landscape is worsening and threats continue to evolve, which has necessitated organizations to increase their budgets toward security initiatives. However, continually requesting more resources is a goal that directly conflicts with the basic business goal of making a profit and maximizing benefits. A major way of maximizing benefits and profits is to reduce costs and make operations less costly. The stakeholders—mainly the investors—and the board...
