Information security has evolved from a solely technical requirement to a strategic organization requirement supporting mission performance, financial goals, protection of intellectual capital, and regulatory compliance. In addition to a global environment with increasing cyber risks and cloud computing, organizations have increasingly dynamic complex organizations structures and supply chains. Effective information security governance and risk management require an enterprise perspective. You may notice the concept of an enterprise boundary is evolving.
Reflecting on your experience, the course materials, and any independent research, share the primary drivers of effective information security governance in either a public or private organization. Explain the potential influence of information security governance on executive decision-making, risk, and regulatory compliance.