RE: InfoSec Importance


Does your company has a Internal IT Audit department or had engaged
external IT Auditors? If yes, talk to them and they will convince your
management.

Companies often want to save cost and always look at the ROI whenever
money is to be spent. If you want to show the ROI of hiring a IT
Security Officer, it is very difficult to predict the impact of the risk
until it actually happen. Using regulations requirement is the best way
to go. i.e. Basel I/II, Sarbanes Oxley, etc.

Regards,
Andrew Chong, CISSP (Singapore)

-----Original Message-----
From: Mohamad Mneimneh [mailto:mmneimneh@xxxxxxxxxx]
Sent: Friday, June 02, 2006 3:39 PM
To: security-basics@xxxxxxxxxxxxxxxxx
Subject: InfoSec Importance
Importance: High


Hi List,

I am trying to convince my management of the importance of having a
security officer in the enterprise. I have googled the topic, but not
much was found. I would really benefit from your suggestions on how to
approach the management.

-Mohamad.
************************************************************************
***********************************************************
No employee or agent is authorized to conclude any binding agreement on
behalf of Comium with another party by e-mail without expressed written
confirmation by an officer of Comium. Any views expressed by an
individual in this electronic message do not necessarily reflect views
of Comium or its subsidiaries and associates. This electronic message
and its attachments are solely addressed to the addressee's, and contain
confidential information protected from disclosure belonging to Comium.
If you are not the intended addressee of this electronic message and its
attachments, kindly delete it immediately from your system and notify
the sender by electronic mail. You must not copy this message or
attachment or disclose its content to any other person. Comium does not
guarantee the integrity of this electronic message and any of its
attachments, or that they are free from computer viruses or other
defects.
************************************************************************
************************************************************

--
No virus found in this incoming message.
Checked by AVG Free Edition.
Version: 7.1.394 / Virus Database: 268.8.1/354 - Release Date: 6/1/2006


--
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.394 / Virus Database: 268.8.1/354 - Release Date: 6/1/2006


Relevant Pages

  • RE: InfoSec Importance
    ... security officer in the enterprise. ... confirmation by an officer of Comium. ... This electronic message and its attachments are solely addressed to the ...
    (Security-Basics)
  • InfoSec Importance
    ... approach the management. ... This electronic message and its attachments are solely addressed to the addressee's, and contain confidential information protected from disclosure belonging to Comium. ...
    (Security-Basics)
  • Re: InfoSec Importance
    ... But if you do go shopping for a security officer, make sure the person has a command of the English language, has the ability to insert f-bombs in their statements to shock and astound executive management. ... This electronic message and its attachments are solely addressed to the addressee's, and contain confidential information protected from disclosure belonging to Comium. ...
    (Security-Basics)
  • LKML Mukund JB. New Device Requirements..
    ... The information contained in this electronic message and any attachments ... If you are not the intended recipient, ... send the line "unsubscribe linux-kernel" in ...
    (Linux-Kernel)
  • initrd stuff & need of software layer for virtual to physical address translation ?
    ... The information contained in this electronic message and any attachments ... If you are not the intended recipient, ... send the line "unsubscribe linux-kernel" in ...
    (Linux-Kernel)