ARCHIVE
ID Number: G00137029



This research is provided for historical perspective;
portions of this document may not reflect current conditions.





The Evolving Role of the Chief Information Security Officer
23 January 2006
 
Eric Ouellet   Paul E. Proctor   Roberta J. Witty  

As the overall IT security industry matures, the role of the chief information security officer continues to be redefined. A clearer understanding of the CISO's impact within organizations will lead to innovations in best practices and risk management, as well as greater business value.




Price: US$495.00

Pages: 18






Browse Topics


Other Options







Contact Gartner





Purchasing this document is fast, easy and secure, but you must be registered with gartner.com so we can track your order. Please select your status from these three choices:
Registration is required to purchase this document.
Or, you can register for gartner.com only.
 You or your organization may already own this document. Register now to find out. Your Gartner Membership Administrator can supply the needed License Key(s).
You will not lose your document during registration.
Sign in here:
Username:

Password:
Forgot your username
or password?







For more information about purchasing this or other documents, contact Gartner at one of the telephone numbers below:
North America:    +1 203-316-3010 7:30 am - 8:00 pm Stamford, CT
Europe:    +44 1784 267770 9:00 am - 5:00 pm London
Asia/Pacific:    +65 6879 2785 9:00 am - 6:00 pm Singapore
Japan:    +81 3 3481 3552 9:00 am - 5:30 pm Tokyo

Table of Contents


    
 Analysis

1.0
    
 The Evolution of the CISO Role

1.1
    
 The Part-Time Security Technocrat (1980s Through 1998)
1.2
    
 The Security Enforcer (1998 Through 2002)
1.3
    
 The Modern CISO (2002 Through 2005)
1.4
    
 The Integration of Security Within the Business
1.5
    
 The Risk Management Officer (2006 and Onward)
2.0
    
 The CISO's Responsibilities

2.1
    
 The CISO's Main Role
2.2
    
 The CISO's Main Activities
2.3
    
 Tips for Success

    
 Recommended Reading


List of Figures


Figure 1. 
 Disruptive Innovation Means the Need for Information Security Is Here to Stay
 

Figure 2. 
 The Evolution of Security Requirements
 

Figure 3. 
 Information Security Maturity Phases, 2005
 

Figure 4. 
 IT Security Management and the IT Operations Maturity Model
 

Figure 5. 
 Life Cycle Stages
 

Figure 6. 
 The Infused Security Culture
 

Figure 7. 
 Getting the Business Involved
 

Figure 8. 
 Security Program Lenses
 



Browse Topics:
 
IT Workforce Roles and Responsibilities
Security and Risk Management Roles




© 2006 Gartner, Inc. and/or its Affiliates. All Rights Reserved. Reproduction and distribution of this publication in any form without prior written permission is forbidden. The information contained herein has been obtained from sources believed to be reliable. Gartner disclaims all warranties as to the accuracy, completeness or adequacy of such information. Although Gartner's research may discuss legal issues related to the information technology business, Gartner does not provide legal advice or services and its research should not be construed or used as such. Gartner shall have no liability for errors, omissions or inadequacies in the information contained herein or for interpretations thereof. The opinions expressed herein are subject to change without notice.




Resource Id: 488189