Information Protection Centers - An Organizational Approach to Security

by Andrew Mackie Sept. 1, 2017 via Symantec

An organization connecting to the Internet without a comprehensive program of information protection is like a person without an immune system leaving their protective bubble-at some time they will come in contact with something that will harm or kill. Most managers are not aware of the risks. They find the issues too esoteric and leave them to their technical staff to handle. Since they don't see security delivering a return on investment they don't want to throw a lot of resources (people, money) at it. Security is appropriately addressed only when it is considered vital to the business. The approaches that are provided in this focus area can be used to make security more directly supportive of your organization's business.

https://www.symantec.com/connect/articles/information-protection-centers-organizational-approach-...