The Information Systems Security Officers Guide: Establishing and Managing an Information Protection Program

Ethics is not a policing function. It's about creating the kind of climate in which people are encouraged to make the right decisions in the first place. ^[1]—Kent Kresa

Chapter Objective

This chapter will discuss the issue of ethics and the ISSO; its importance to the profession; examples of codes of ethics of security and related professions; and the impact of ethics on compliance with the Corporate Information Assets Protection Program (CIAPP). ^[2]

^[1]Kent Kresa is Chairman of the Board and CEO of Northrop Grumman Corporation.

^[2]This chapter is a modified excerpt from a similar chapter related to the corporate security manager in the book The Manager's Handbook for Corporate Security, published by Butterworth-Heinemann, 2003, and written by Dr. Kovacich and Mr. Edward Halibozek.