There is much discussion on the relationship between IT Security and Privacy.
I believe they can be, should be harmonious in the organization, where Privacy helps determine what information is collected/used and IT Security ensures the confidentiality, integrity and availability of that information.
Remember, our ultimate goal is to protect people. We do that by protecting the information, processes, systems & networks of our organization. We can’t protect if we don’t know what we are protecting!
If you are CISO, get to know your Privacy Team. If your organization does not have one, talk with your legal team, risk managers, data stewards….. Ask questions, offer solutions, be part of the group. At some point you will look around and realize that the group has naturally become the Privacy Team, and the organization has become safer and more secure!
JKimmitt's thoughts on Cyber, Security, Privacy, and more.... 