Ownership of Risk and Accountability

In this episode, Allan flies solo, as he is finally willing to speak on an issue he has been mulling and fussing over for some time:  the two-fold CISO laments of:

• "We have all the accountability and none of the authority!"
• "We don't own the risk - we advise the business"

Allan is refuting both of these claims.

Allan calls up examples such as project managers, contract lawyers, CFOs in his argument.

He also demonstrates that we have far more authority than we think, and also that we can earn even more.

As to advising the business, and the business owning the risk, we have here two contradictions to one of the show's mantras: "BE the business!"

You will hopefully come away from this show with some different perspectives on these two claims.

Y'all be good now!