- ホーム
- > 洋書
- > 英文書
- > Computer / General
Full Description
This isn't just a book. It is a roadmap for the next generation of cybersecurity leadership. In an era where cyber threats are more sophisticated and the stakes are higher than ever, Chief Information Security Officers (CISOs) can no longer rely solely on technical expertise. They must evolve into strategic business leaders who can seamlessly integrate cybersecurity into the fabric of their organizations.
This book challenges the traditional perception of CISOs as technical leaders, advocating for a strategic shift toward business alignment, quantitative risk management, and the embrace of emerging technologies like artificial intelligence (AI) and machine learning. It empowers CISOs to transcend their technical expertise and evolve into business-savvy leaders who are fully equipped to meet the rising expectations from boards, executives, and regulators. This book directly addresses the increasing demands from boards and regulators in the wake of recent high-profile cyber events, providing CISOs with the necessary skills and knowledge to navigate this new landscape.
This book isn't just about theory but also action. It delves into the practicalities of business-aligned cybersecurity through real-life stories and illustrative examples that showcase the triumphs and tribulations of CISOs in the field. This book offers unparalleled insights gleaned from the author's extensive experience in advising hundreds of successful programs, including in-depth discussions on risk quantification, cyber insurance strategies, and defining materiality for risks and incidents. This book fills the gap left by other resources, providing clear guidance on translating business alignment concepts into practice.
If you're a cybersecurity professional aspiring to a CISO role or an existing CISO seeking to enhance your strategic leadership skills and business acumen, this book is your roadmap. It is designed to bridge the gap between the technical and business worlds and empower you to become a strategic leader who drives value and protects your organization's most critical assets.
Contents
1. Introduction. Part 1: The Changing Role of the Security Leader. 2. What Is a CISO 3.0?. 3. The Evolving Regulatory Landscape. Part 2: Business and Risk Alignment. 4. The Language of Business. 5. Ownership and Boards of Directors. 6. Risk. Part 3: Risk Treatment. Part 3A: Transfer, Avoid, and Accept Risk. 7. Cyber Liability Insurance. 8. Self-Insurance and Risk Financing. Part 3B: Risk Mitigation. 9. Developing a 3.0 Program Strategy. 10. Security Tactics and Capabilities. 11. Leading Effective Teams. 12. Security Tactics. 13. Modern Cyber Resilience. 14. AI and the Future of the CISO Role. Part 4: Bringing It All Together. 15. Developing Modern Metrics. 16. Board-Level Communication. 17. Materiality and Disclosures. 18. The CISO 3.0: The Future of Cybersecurity Leadership.