- Jan 17, 2005
It doesnt. Your CEO and CFO are not correctly educated and trained to deal with the risk correctly then the information security officer has work to do.how does their title prevent them from doing something idiotic.
In some cases, especially organized espionage, your future, and the companies future, depends on you been able to convince the CEO and CFO how dangerous the risk is and how to manage it. My personal experience is in many cases, neither users or IT are sufficiently prepared for modern attacks. Especially when the attack includes more than 7 layers.