If I were a CEO or a Board Member I would be pissed.
It is crazy to think that a business has to handle an overhead of compliance and also manage the burden of ‘real security’.
What I am suggesting makes auditors and the CEO go ‘bananas’.
CEO asks, “Why, do I have to pay for External Audit, Internal Audit, the IT Security Department, and then have to absorb the costs of various compliance officers who are visiting and taking up staff resource time that directly and indirectly costs us money?”
The company has still not made money yet. There is no profit being generated yet!
Why is this happening?
Okay, here is what needs to happen … like really happen…