One of the fun things about being in Information Security is the amount of change our profession goes through. In a sense, we might pity the accountant, the sales person, or others whose role in the corporation has been well defined for many years. Our role is centered on understanding the use (and therefore protection of) information, and as such our job is as dynamic as that which we seek to protect. Now if I haven’t mistaken this role, how the CISO approaches her job is about to fundamentally change (again).

(more…)