John Pontrelli, VP and CSO of TriWest Healthcare Alliance, answers readers’ questions about security governance. He says combining infosec and physec creates new vulnerabilities in corporate risk management. A CSO is a single point of contact with visibility to all security-related risks, he says. A silo approach to security is not in line with 21st century risks or organizational needs, he adds. To be an effective security professional, regardless of title, one must report within the C-level hierarchy.”]
Source: https://www.csoonline.com/article/2117054/security-convergence–get-it-together.html