Why CISOs Fail: The Missing Link in Security Management--and How to Fix It (Internal Audit and IT Audit)
暫譯: 為什麼CISO會失敗：安全管理中的缺失環節及其修復方法（內部審計與IT審計）

This book serves as an introduction into the world of security and provides insight into why and how current security management practices fail, resulting in overall dissatisfaction by practitioners and lack of success in the corporate environment. The author examines the reasons and suggests how to fix them. The resulting improvement is highly beneficial to any corporation that chooses to pursue this approach or strategy and from a bottom-line and business operations perspective, not just in technical operations. This book transforms the understanding of the role of the CISO, the selection process for a CISO, and the financial impact that security plays in any organization.