Culture Change and Awareness: CSOs' Ultimate DutyMaster the Basics and Share Strategies Too, Says Vocalink's Andrew Rose
The ultimate responsibility of every CSO and CISO is to foster culture change and awareness, because that is every organization's single greatest data security and physical security control, says Andrew Rose, the chief security officer of Vocalink, which is a MasterCard company.
See Also: The State of Integrated Risk Management
In a video interview with Information Security Media Group at RSA Conference 2019 in San Francisco, Rose discusses:
- Promoting culture change and awareness;
- How the information security field still too often ignores the essential basics;
- Why he promotes CSOs sharing their strategies.
Rose is the CSO of British payment system provider Vocalink - a MasterCard company - where he's responsible for the organization's physical and data security. Previously, he served as chief information security officer and head of cybersecurity for National Air Traffic Services, Britain's air traffic control service; was a principal analyst in the security and risk practice at Forrester Research, and was the global IT risk manager for law firm Clifford Chance, among other roles.