Information security has always been complex and technically challenging. But the increasing borderlessness of cloud-and-mobile-enabled organisations in the last 10 years has exponentially multiplied that challenge. More recently, what’s at stake has risen dramatically as very public cybersecurity breaches have damaged the reputation of trusted brands that possess our personal information. CIOs, CISOs and CEOs are being fired; board members are being sued.
This paper explores why the older “all or nothing” kind of relationship between business organisations and information security services providers (ISSPs) is giving way to a hybrid model that security professionals can leverage to augment their operations and effectiveness.