The Information Systems Security Officers Guide: Establishing and Managing an Information Protection Program

As IWC's ISSO, you have certain duties and responsibilities. These include the following:

• Managing people, which includes:

  • Building a reputation of professional integrity;

  • Maintaining excellent business relationships;

  • Dealing with changes;

  • Communicating;

  • Developing people;

  • Influencing people in a positive way;

  • Building a teamwork environment; and

  • Developing people through performance management, such as directing and helping CIAPP staff to be results-oriented.

• Managing the business of CIAPP, which consists of:

  • A commitment to results;

  • Being customer/supplier focused;

  • Taking responsibility for making decisions;

  • Developing and managing resource allocations, such as budgets;

  • Planning and organizing;

  • Being a problem-solver;

  • Thinking strategically;

  • Using sound business judgment; and

  • Accepting personal accountability and ownership.

• Managing CIAPP processes, which includes:

  • Project planning and implementation;

  • Persistence of quality in everything;

  • Maintaining a systems perspective; and

  • Maintaining current job knowledge.