IT security can’t be an island of its own; it’s part of a greater archipelago, says Eddie Schwartz. “IT people are very good at managing SLAs (service-level agreements), they’re better at managing all of these standards, in a lot of cases,” Schwartz says. Schwartz is RSA’s CISO after a massive, advanced persistent threat breach against the security vendor’s SecurID two-factor authentication product in 2011. There is virtually no growth in the number of people in the U.S. who consider themselves IT security professionals, not for a lack of demand.”]
Source: https://www.cuinfosecurity.com/blogs/cisos-dont-live-on-island-p-1314