ABSTRACT
It was once said, “Information is king.” In today’s world, this statement has never rung more true. As a
result, information is now viewed as an asset; and organizations are willing to invest large sums of money
toward its protection. Unfortunately, organizations appear to be overlooking one of the weakest links for
protecting their information-the information security management team. The security management
team is the one component in our strategy that can ensure our security plan is working properly and
takes corrective actions when necessary. In this chapter, we address the benefits of an information security
team, the various roles within the team, job separation, job rotation, and performance metrics for the
team, including certifications.
