There is some form of management reality beyond the “100 days” journalistic cliché: How does an incoming executive make an impact in a new role? What are the real timeframes to look at, and what can be expected and over what horizon? What are the key issues that should raise a red flag during the first few months in a new senior position? and those which can be ignored?
Those are the themes we have been exploring on the Corix Partners blog since November 2017 around the specific role of the incoming CISO.
Of course, each and everyone’s own path to success will ultimately depend on the specific context of their arrival — from their own previous experience at this level of responsibilities to the firm’s security management maturity. We believe, however, that this series of articles will prove helpful in guiding most CISOs through their first steps in a new organisation and provide them with a useful roadmap about making an impact in their new job.
Our experience drives us to split the new CISO’s roadmap into 3 different time horizons which can be roughly encapsulated into a 6-days / 6-weeks / 6-month paradigm. These three milestones represent good opportunities for the incoming CISO to focus on what truly matters at each step— and to highlight what they should not yet be concerned about.
It is key – in our opinion – for any new CISO to hit the ground running so your first six days should be dedicated to start engaging actively with your direct management and with your staff. As much as possible, you must meet with them face-to-face to start building a stronger personal bond. Make use of those first interactions to understand how reporting lines work in your new organization (upwards, downwards and sideways across matrix models), to position the challenge ahead and to identify key preexisting roadblocks. The only thing that should worry you at this point should be the inability to properly schedule those key first meetings because stakeholders don’t have time for you. Now would also be a good time to get the finance question straight: Do you have a budget allocated and how is it managed? Without appropriate resources, you won’t be able to achieve much.
Your first six weeks should be the natural continuity of the first six days. Only by meeting as many relevant stakeholders as possible will you be able to accurately assess the situation you are inheriting of as a CISO. Key at this stage is to listen, listen and listen instead of coming up with ready-made solutions, or focusing only on the burning fires. Travel if you must and take time to gather your thoughts, then start drafting a strategic framework — ameliorative directions, time-frames, and high-level costs — to address your findings, in relation to the objectives and challenges identified during your first week. Your main objective around this time should be to get your strategic framework validated with your boss, but you should be fully prepared if your plan is properly costed, rooted in tangible field observations and the expectations of key stakeholders. Lack of engagement from your management beyond merely tactical and technical topics and a general lack of interest from stakeholders for a truly transformative agenda should raise red flags.
Once validated, the next step must consist of executing your strategic framework and it will start with the formal setting up of an appropriate governance and operating model, as well as getting as many senior team members and stakeholders on board as you can. You should now be getting ready to implement what is very likely to be a mid- to long-term plan, and you must resist being pushed or drawn into tactical firefighting. Focus on infusing a sense of clarity among all stakeholders, both about timing and objectives.
As it turns out, your sixth month in the job should correspond approximately to your first 100 (working) days, and it is a good time to start looking back on your journey while recognizing that you are really only getting started.
While a 100 days framework is a useful model to think about getting up to speed in your new role, you must keep in mind that any lasting change in an organization’s InfoSec practices is likely to require steady work over a period of several years.
So while this series of articles should help you hit the ground running, always keep in mind that, if your objectives are rooted in delivering lasting change around cybersecurity, you are in for a marathon, not a sprint.
Corix Partners is a Boutique Management Consultancy Firm, focused on assisting CIOs and other C-level executives in resolving Security Strategy, Organisation & Governance challenges. This article was written in collaboration with Vincent Viers.
I am not certain the place you are getting your info, but great topic. I needs to spend a while studying much more or understanding more. Thanks for excellent info I used to be searching for this info for my mission.
Touche. Outstanding arguments. Keep up the amazing spirit.
I am really thankful to the holder of this website who has shared this
fantastic post at at this time.
Hey! This is my first visit to your blog! We are a team of volunteers and starting a new project in a community in the same niche.
Your blog provided us beneficial information to work on. You have
done a outstanding job!
Please let me know if you’re looking for a author for your
site. You have some really good posts and I feel I would
be a good asset. If you ever want to take some of the
load off, I’d really like to write some articles for your blog in exchange
for a link back to mine. Please blast me an e-mail if interested.
Thank you!
Good info. Lucky me I recently found your website by
chance (stumbleupon). I’ve saved it for later!
It’s actually a cool and useful piece of information. I’m satisfied that you simply shared this useful information with us.
Please keep us informed like this. Thanks for
sharing.
Good blog you’ve got here.. It’s difficult to find good
quality writing like yours nowadays. I truly appreciate individuals
like you! Take care!!
Hi would you mind letting me know which web host you’re working with?
I’ve loaded your blog in 3 completely different internet browsers and I must
say this blog loads a lot faster then most.
Can you recommend a good web hosting provider at a fair price?
Cheers, I appreciate it!
I blog frequently and I really appreciate your information.
The article has really peaked my interest.
I’m going to book mark your site and keep checking
for new information about once per week. I opted in for your RSS feed too.
quest bars http://bit.ly/3jZgEA2 quest bars
Great web site you have here.. It’s difficult to
find good quality writing like yours nowadays. I truly appreciate individuals like you!
Take care!! asmr https://app.gumroad.com/asmr2021/p/best-asmr-online asmr
If some one desires expert view about blogging after that
i propose him/her to visit this web site, Keep up the nice work.
cheap flights http://1704milesapart.tumblr.com/ cheap flights
Thanks for finally writing about > The First 100 Days of the New CISO
– CIO WaterCooler Consultants < Liked it! scoliosis surgery https://0401mm.tumblr.com/ scoliosis surgery
Hi there, just wanted to mention, I loved this article.
It was helpful. Keep on posting! ps4 https://bit.ly/3z5HwTp ps4
I’ve been exploring for a little for any high quality articles or blog posts
in this kind of area . Exploring in Yahoo I ultimately stumbled upon this site.
Reading this info So i’m satisfied to convey that I’ve a very just right uncanny feeling
I found out exactly what I needed. I so much for sure will make certain to
do not forget this site and give it a glance on a relentless basis.
scoliosis surgery https://coub.com/stories/962966-scoliosis-surgery scoliosis surgery
It’s going to be ending of mine day, but before ending I am reading this enormous paragraph
to improve my know-how. quest bars https://www.iherb.com/search?kw=quest%20bars quest bars
Attractive portion of content. I just stumbled upon your web site and
in accession capital to assert that I acquire actually loved account your weblog posts.
Anyway I’ll be subscribing for your augment
and even I success you get entry to consistently rapidly.
With havin so much written content do you ever run into
any issues of plagorism or copyright violation? My blog has a lot of exclusive content I’ve either written myself or outsourced but it seems a lot of it is popping it up all over the internet without my authorization. Do you know any solutions to help prevent content from being ripped off?
I’d certainly appreciate it.
Neat blog! Is your theme custom made or did you download it from somewhere?
A design like yours with a few simple adjustements would really make my blog stand out.
Please let me know where you got your theme.
Appreciate it
Awesome article.
Hey there just wanted to give you a quick heads up. The text in your article seem to be running off the screen in Opera. I’m not sure if this is a formatting issue or something to do with internet browser compatibility but I figured I’d post to let you know. The layout look great though! Hope you get the problem fixed soon. Thanks
https://amd1080.com/pharaoh/
Your style is so unique in comparison to other people I’ve read stuff from. I appreciate you for posting when you have the opportunity, Guess I will just bookmark this web site.
https://main7.net/coin/
Howdy would you mind stating which blog platform you’re using? I’m going to start my own blog soon but I’m having a difficult time choosing between BlogEngine/Wordpress/B2evolution and Drupal. The reason I ask is because your design seems different then most blogs and I’m looking for something completely unique. P.S Apologies for being off-topic but I had to ask!|
Wohh just what I was searching for, thanks for posting.
Hey there I am so grateful I found your blog, I really found you by error, while I was searching on Google for something else, Anyways I am here now and would just like to say kudos for a tremendous post and a all round enjoyable blog (I also love the theme/design), I don’t have time to go through it all at the minute but I have book-marked it and also added in your RSS feeds, so when I have time I will be back to read much more, Please do keep up the awesome work.
Only wanna remark on few general things, The website design and style is perfect, the content material is rattling great. “Drop the question what tomorrow may bring, and count as profit every day that fate allows you.” by Horace.
Thank you for the auspicious writeup. It in fact was a amusement
account it. Look advanced to far added agreeable from you!
However, how can we communicate?
I want to to thank you for this good read!! I certainly enjoyed
every bit of it. I have got you book-marked to look at new things
you post…
Nice post. I used to be checking continuously this blog
and I am impressed! Extremely useful info specially the last section 🙂 I care for
such information a lot. I was looking for this particular info for a long
time. Thanks and best of luck.
You have brought up a very wonderful points, thankyou for the post.
Howdy! Do you use Twitter? I’d like to follow you if that would be okay. I’m definitely enjoying your blog and look forward to new posts.
I am glad to be a visitant of this utter web blog! , thanks for this rare info ! .
Thanks for finally talking about > The First 100 Days of the
New CISO – CIO WaterCooler Consultants < Liked it!
Hi, i believe that i saw you visited my blog thus i got here to go back
the prefer?.I’m trying to in finding issues to improve my web
site!I guess its adequate to use some of your ideas!!
Yes! Finally someone writes about gamefly.
With havin so much content and articles do you ever run into any issues of
plagorism or copyright infringement? My website
has a lot of completely unique content I’ve either authored myself or outsourced but it looks like a lot of
it is popping it up all over the internet without my authorization. Do you know
any methods to help reduce content from being stolen? I’d definitely appreciate it.
Awesome post.
An intriguing discussion is definitely worth comment. I believe that you should write more
on this subject, it may not be a taboo matter but typically people do not discuss such issues.
To the next! Best wishes!!
Hello Dear, are you in fact visiting this web site regularly, if so afterward you
will absolutely take pleasant knowledge.
Hi, Neat post. There is a problem with your web site in internet explorer, would check this… IE still is the market leader and a good portion of people will miss your great writing due to this problem.
I wanted to thank you for this great read!! I definitely enjoying every little bit of it I have you bookmarked to check out new stuff you post…
My partner and I stumbled over here different web page and thought
I might as well check things out. I like what I see so now i’m following you.
Look forward to looking at your web page yet again.
WOW just what I was searching for. Came here by searching for for
Heya! I know this is kind of off-topic but I had to ask.
Does running a well-established website like yours take a massive amount work?
I am brand new to operating a blog however I do write in my
journal everyday. I’d like to start a blog so I will be able to
share my personal experience and feelings online.
Please let me know if you have any kind of recommendations or tips for brand new aspiring bloggers.
Thankyou!
What’s Taking place i’m new to this, I stumbled upon this I have found
It positively helpful and it has aided me out
loads. I am hoping to give a contribution & help different customers
like its helped me. Good job.
Does your website have a contact page? I’m having trouble locating it but, I’d like to shoot you an email.
I’ve got some ideas for your blog you might be interested in hearing.
Either way, great blog and I look forward to seeing it develop over time.
Hello would you mind stating which blog platform you’re using?
I’m going to start my own blog soon but I’m having a hard time deciding between BlogEngine/Wordpress/B2evolution and
Drupal. The reason I ask is because your design seems different then most blogs
and I’m looking for something unique. P.S Apologies for getting off-topic but I had to ask!
Greetings! Very useful advice in this particular post!
It is the little changes that will make the most significant changes.
Thanks for sharing!
Thanks for sharing your thoughts on this. Regards
After looking at a number of the articles on your site,
I honestly like your way of writing a blog.
I bookmarked it to my bookmark site list and will be checking back soon. Take a look at my website as well and let me know how you feel.
Magnificent beat ! I would like to apprentice while you amend your
site, how could i subscribe for a blog site? The account aided me a acceptable deal.
I had been a little bit acquainted of this your broadcast offered
bright clear idea
As the admin of this website is working, no hesitation very soon it will be
famous, due to its feature contents.