Friday, January 27, 2012 Register
Home

Tools
       Security Program Review 

News
       CISO News Feed
       Upcoming Conferences
       Newsletter Archive

Resources
       Propulsion Application
       CISO Security Links
       Project Manager Security
       Security Program Development
          Security Program Considerations
             Organizational Drivers
             Security Strategy
             Mission & Mandate
             Roles & Responsibilities
             Security Policies
             Training & Awareness
          Statistics & Metrics
          Regulations
          Ask The Experts a Question
       Glossary and Definitions

Publications
       Articles

Research
       Security Leader Self Assessment
       Security Stress Survey
       New Security Survey

About Us

Contact Us
You are hereHome  
CISOs, CSOs, Security Professionals, Project Managers.....Welcome!
CISOHandbook.com is a resource site for CISO's, CSO's, and security professionals. A place where security executives, managers, and practitioners can share ideas, challenges and opportunities associated with developing, participating, or managing Enterprise Security Programs.
 
The site contains metrics, tools, opinions, and most importantly access to CISO's, CSO's, experts, and other professionals in the field of security.  The sole intent of the site is to share information, ideas, tips, and techniques for addressing security issues faced by today's professional. 
 
The content of CISOHandbook.com is free to all however there are some areas that can only be accessed through registering and logging in. Registration is fast, free and easy, so what are you waiting for!
Recommendations

For the first time since the writing of The CISO Handbook we are officially endorsing a product for security leaders. We have chosen to share this application with you because we firmly believe this is a proven game changer.

We would like to introduce you to Propulsion, an online application that provides security leaders a SIMPLE, SECURE, and FAST way to develop and execute a mature security roadmap.

If you do one thing on this website, we'd recommend it's learning more about this application.

To learn more about Propulsion and read our analysis and overview, click here. Otherwise, you can visit their website at delphiis.com/propulsion and download a white paper
How do you Measure Up? Take the Security Leader Assessment

This assessment is designed to evaluate your current progress as a security leader, within your specific environment. As we see the security industry changing we want to get a temperature for how security leaders are doing within their environment. As follow up with this survey we will aim a lot of our energy and focus to provide resources and content that tangibly help security leaders and equip them to improve and optimize their security programs and roadmaps.

Click here to take the assessment and see how you measure up.
Security Opinion

Build a Winning Security System or Get Fired: The Choice is Yours
By Mike Gentile, CISSP and CISOHandbook.com team 

Preface


Over the years, I have been in hundreds of security programs around the globe.   Whether large or small, a financial conglomerate or non-profit, they generally always struggle with one thing: They can’t describe to me what their security program produces and how they produce it as a simple multi-step process. In other words, they do not have a security system. This article, which will be a series of many over the coming months, will explore the art of building a successful security system. It will build on the premise that it is more important in the modern enterprise to demonstrate the repeatable method by which your security effort performs work, than the actual work it is performing itself.

Click here to read the rest of this article
Security Opinion

3 Tips for Measuring the Value of a Proposed Security Project

By Mike Gentile

Preface:


Many security programs spend countless hours every budget cycle trying to determine which projects to undertake for the upcoming year. Should we replace our firewalls, should we take on that federated identity management project (yuck!) Perhaps we should go with old reliable and do what our favorite research organization tells us to do (Bad choice).  One of the key components during this process is to determine the value of performing a specific security project, thus providing a decision criterion about whether it should be put on the “to-do” list or not. This article will provide simple but effective tips for determining the value of a proposed security project in the common organizational security program setting.
Click here to view the rest of the article
Security Opinion

Understanding the Tangible and Intangible Elements of a Security Program

By Mike Gentile, CISSP and CISOHandbook.com team 

Preface:

Building security programs is difficult.  They have many moving parts and require those who lead them to have knowledge across many different disciplines. Over the years, the team at CISOHandbook.com has strived to develop models that can help with solving this security program development riddle. This article will discuss some improvements and enhancements we have made within our models in helping you develop the right security programs for your organization.

 

Dealing with Secondhand Stress

By Daniel Johnson, SBN Principal Partner, Balance.point/Self Mastery Foundation Inc. 
 
If you have been following this series, you now have a toolkit of techniques and strategies to manage stress quickly and effectively.

 

The next question you may ask is:  How do I deal with stress at the source? 

 
 
On-line Security Program Health Tool

Now Available! 
 
On-line Security Program Health Tool
  • Want To See How Your Security Program Measures Up?
  • Want To See How It Compares To Other Organizations?
  • Want to Get The Results Instantly?
  • Oh Yea, It Is Also Free Courtesy Of CISOHandbook.com.
  • Do You Have More Questions? View the FAQ

Click Here To Check It Out!

This practical, easy-to-use tool enables the user to identify the strengths and weaknesses of their security program across six core areas including:

  • Program Strategy
  • Mission And Mandate
  • Roles and Responsibilities
  • Security Policies
  • Security Project Portfolio
  • Training And Awareness
Additionally, your review is benchmarked against all of the other organizations that have used the tool, providing you even more statistical information.

Everyone has asked for it, so here it comes...Don't miss out!
CISOHandbook Survey

Participate in Our Study!

We are conducting a survey for research we are performing in the domain of information security. The goal of this reseach is to help identify tools, tips, and techniques that can aid security professionals with the intangible complexities associated with implementing security in the modern organization. In addition, for your time as a survey participant, we will provide you the trended results from the survey in 2011.
 
Click Here to Take the Survey!
 
The Elephant in the Room
 
  
 
Now Available!
Premium Sponsors
Gold Sponsors
Advertise With Us
Stay Connected
2011 Coastline Consulting Services, Inc. Privacy Statement  |  Terms Of Use