ID Number: G00163736



Transforming From Chief Information Security Officer to IT Chief Risk Officer
22 December 2008
 
French Caldwell  

The chief information security officer can assume a strategic business role as the IT chief risk officer by developing new competencies in business process and enterprise risk management.




Price: US$495.00

Pages: 12






Browse Topics


Other Options







Contact Gartner





Purchasing this document is fast, easy and secure, but you must be registered with gartner.com so we can track your order. Please select your status from these three choices:
Registration is required to purchase this document.
Or, you can register for gartner.com only.
 You or your organization may already own this document. Register now to find out. Your Gartner Membership Administrator can supply the needed License Key(s).
You will not lose your document during registration.
Sign in here:
Username:

Password:
Forgot your username
or password?







For more information about purchasing this or other documents, contact Gartner at one of the telephone numbers below:
North America:    +1 203-316-3010 7:30 am - 8:00 pm Stamford, CT
Europe:    +44 1784 267770 9:00 am - 5:00 pm London
Asia/Pacific:    +65 6879 2785 9:00 am - 6:00 pm Singapore
Japan:    +81 3 3481 3552 9:00 am - 5:30 pm Tokyo

Table of Contents


    
 Analysis

1.0
    
 Changing Roles for Enterprise Risk Management
2.0
    
 Enterprise Risk Management Is Emerging as a Strategic Discipline
3.0
    
 Current Situation: Critical IT Security Processes
4.0
    
 Future State: New Critical Security Processes Align to Business Process Risks
5.0
    
 Making the Transition to ERM
6.0
    
 Conclusion
7.0
    
 Caveats

    
 Recommended Reading


List of Tables


Table 1.  
 Audience Poll
 

List of Figures


Figure 1. 
 IT Risk Manager Reporting
 

Figure 2. 
 IT Risk Management Governance Body
 

Figure 3. 
 Benefits of IT Risk Management
 

Figure 4. 
 GRC Initiatives
 

Figure 5. 
 High-Level Security Processes Today
 

Figure 6. 
 High-Level Security Processes in the Future
 

Figure 7. 
 Nominal Comparison of CISO and IT CRO Critical Skills
 



Browse Topics:
 
IT Risk Management
Security Risk Management
Enterprise Risk Management
Security and Risk Management Roles
Security Governance




© 2008 Gartner, Inc. and/or its Affiliates. All Rights Reserved. Reproduction and distribution of this publication in any form without prior written permission is forbidden. The information contained herein has been obtained from sources believed to be reliable. Gartner disclaims all warranties as to the accuracy, completeness or adequacy of such information. Although Gartner's research may discuss legal issues related to the information technology business, Gartner does not provide legal advice or services and its research should not be construed or used as such. Gartner shall have no liability for errors, omissions or inadequacies in the information contained herein or for interpretations thereof. The opinions expressed herein are subject to change without notice.




Resource Id: 844912