Building a Corporate Culture That Values CybersecurityInsights on Gauging an Organization's Security Maturity Level
Corporate culture can have a big impact on an organization's ability to achieve cybersecurity objectives, says Jessica Barker, chair of ClubCISO, a private members forum for European information security leaders.
See Also: Stopping BEC and EAC
She advises CISOs: "Think about the type of culture you want. Think about the kind of behaviors that would actually reflect that culture. Where do you want to see improvements? What would show that what you're doing is working? They're the kind of behaviors you want to wrap metrics around."
In a video interview with Information Security Media Group, Barker discusses:
- The crucial link between culture and resiliency;
- Advice for building a positive security culture;
- How organizations can gauge their cybersecurity maturity and work to improve it.
Barker is co-founder and co-CEO of Cygenta, a cybersecurity consultancy firm. She is also the chair of ClubCISO, a private members forum for European information security leaders