Peer-Driven Insights

Security Strategy & Roadmap

About this topic

Security strategy and roadmap refers to a structured plan that outlines security initiatives, investments, and long-term objectives. It aligns protection efforts with business priorities to ensure proactive and effective risk management.

Featured One-Minute Insights

Sept 2024

How are U.S. CISOs Addressing Liability Risk?

New regulations taking effect in the U.S. mean that cybersecurity leaders could face legal liability in the event of an incident. What strategies are they using to protect themselves?
How are U.S. CISOs Addressing Liability Risk?

Active Ambassadors in This Topic

Rathik Pathak

Rathik Pathak

JM Financial Services Ltd

Travel and Hospitality, 1k - 5k

India
View All Community Ambassadors

Community Posts

Thoughts on Biden’s executive order regarding spyware? Do you think it could actually be effective at combating commercial spyware abuse?

Read More Comments

In what industry are you at the highest risk of a data breach?

Public administration13%

Healthcare & pharmaceuticals56%

Finance & insurance23%

Education & research3%

Retail2%

Other (please list in the comments)

View Results

Have you had any success getting execs to document what their risk tolerance is? How did you approach it?

What are you doing these days to future proof your cyber career?

How do you currently involve departments and teams outside IT/security in your vulnerability management efforts, if at all?

Read More Comments

Should a CISO always be technical?

Yes71%

No28%

Other (share below)

View Results

What kind of results are you seeing from CRQ (cyber risk quantification) so far?

Read More Comments

What's the best way you've found to actually get senior leadership to understand the importance of insider risk management?

If your org’s deployed private cloud, has it improved compliance or security? What results are you seeing so far?

Read More Comments

Does your org’s security team include anyone with a background in data science?

Yes - one person33%

Yes - multiple people 49%

No14%

I don’t know - show results3%

View Results

If your org has a security behavior and culture program, how did you get leadership’s buy-in (and enough funding) for it?

How can you detect proxyjacking attacks before malware is actually installed on your systems?

Does supply chain security require AI, blockchain or process analytics?

Read More Comments

Have you ever joined a security organization after it lost credibility within the business (for instance, after a major breach)? What did you do to build it back up?

Read More Comments

How is your organization tackling the seemingly Wild West in regard to data security for these rapidly expanding LLM AI platforms? We are working with an existing (in production) application vendor who is terminating the use of their own internal AI engine in favor of OpenAI via API. The OpenAI terms clearly state that they will not warrant that our content will be secure or not lost, which is a non-starter for us.

Read More Comments

What tools or solutions would you recommend to improve data strategy and governance?

Read More Comments