The Impact of Organizational Culture on the Development of an Information Security Program
As information security professionals, it is our job to assess, manage, and monitor risk. But what happens when organizations don't acknowledge risk? In this blog post, I am going to focus on the crippling effects of the lack of senior management buy-in as well as end-user push back to the…