A CISO’s Guide to Security Outsourcing
-
-
-
-
- Paisano1
- added this
-
more from Tech:
http://information-security-resources.com/2009/07/13/a-cisos-guide-to...
The decision to outsource information security isn’t the right approach for every business; the choice of provider and which services to farm out to a 3rd party are unique to each organization and set of circumstances.Furthermore, while the responsibility for information security’s daily care and feeding can be outsourced, the accountability for compliance, information protection, and assurance will still reside within the organization usually in the CISO’s office.
There are several things the CISO will need to focus on and ways to not only influence the security outsourcing decision but also take ownership of assessing the risk inherent in the outsourcing relationship...
