Presentation is loading. Please wait.

Presentation is loading. Please wait.

Strategy and Strategic Planning:

Published bySturla Flemming Arnesen Modified over 5 years ago

Similar presentations

Presentation on theme: "Strategy and Strategic Planning:"— Presentation transcript:

1 Strategy and Strategic Planning:
Strategy, Strategic planning and security strategy, the information security lifecycle and Architecting the enterprise by Erlan Bakiev, Ph.D.

2 Precursors to Planning
The Role of Planning Precursors to Planning Values Statement Vision Statement Mission Statement Strategic Planning Creating a Strategic Plan Planning Levels Planning and the CISO(Chief Info Security Officer) Planning for Information Security Implementation

3 Identify the roles in organizations that are active in the planning process
Grasp the principal components of information security system implementation planning in the organizational planning scheme.

4

5 Planning Influences Employees Management Stockholders
Outside stakeholders Physical environment Political and legal environment Competitive environment Technological environment

6 Information Security Professionals
Professionals that support the information security program Chief Information Officer (CIO) Chief Information Security Office (CISO) Security Managers Security Technicians Data Owners Data Custodians Data Users Slide 6

7 Planning Definition Planning is creating action steps toward goals and then controlling them Provides direction for the organization’s future Allows managing resources Optimizes the use of the resources Coordinates the effort of independent organizational units

8 Precursors to Planning
Values Statement Vision Statement Mission Statement

9 Values Statement Principles Qualities Benchmarks What your company is?
Microsoft: Integrity, honesty, passion, and respectfulness are significant parts of Microsoft’s corporate philosophy

10 Vision Statement Ambitious Best-case scenario Future goals
Where your company wants to be? Microsoft: A personal computer in every home running Microsoft software

11 Mission Statement Organization’s business Areas of operation
Internal External How your company is going to get there? Google: Organize the world's information and make it universally accessible and useful.

12 Strategic Planning Strategy lays out the long-term direction to be taken by organization It guides organizational efforts, and focuses resources toward specific, clearly defined goals. Strategic planning includes Mission statement Vision statement Values statement Coordinated plans for sub units

13 Creating a Strategic Plan
Organization Develops a general strategy Creates specific strategic plans for major divisions Each level of translates those objectives into more specific objectives for the level below

14 Top-Down Strategic Planning

15 Creating a Strategic Plan
Strategic goals are translated into tasks Specific Measurable Achievable Realistic Timely

16 Planning Levels Strategic Planning Tactical Planning
Five or more year focus Strategic plan separated into strategic goals for each department Tactical Planning One to three year focus Breaks strategic goals into a series of incremental objectives

17 Planning Levels Operational Planning
Organize the ongoing, day-to-day performance of tasks Includes clearly identified coordination activities across department boundaries Communications requirements Weekly meetings Summaries Progress reports Break previous slide into this

18 Planning Levels

19 Strategic Plan Elements
Introduction by senior executive Executive Summary Mission Statement and Vision Statement Organizational Profile and History Strategic Issues and Core Values Program Goals and Objectives Management/Operations Goals and Objectives Appendices (optional) Strengths, weaknesses, opportunities and threats (SWOT) analyses, surveys, budgets &etc

20 10 Tips For Strategic Planning
Create a compelling vision statement Embrace the use of balanced scorecard approach Deploy a draft high level plan early, and get input from stakeholders Make the evolving plan visible

21 10 Tips For Planning (cont.)
5. Make the process invigorating for everyone 6. Be persistent 7. Make the process continuous 8. Provide meaning 9. Be yourself 10. Have fun

22 Planning For InfoSec Implementation
Commonly the CISO directly reports to the CIO. The CIO and CISO play important roles in translating overall strategic planning into tactical and operational information security plans CISO plays a more active role planning the details

23 CISO Job Description Creates strategic information security plan with a vision for the future of information security Understands fundamental business activities performed by the company Suggests appropriate information security solutions that uniquely protect these activities Improves status of information security by developing action plans schedules budgets status reports top management communications

24 Planning for Information Security
CIO: translates strategic plan into departmental and InfoSec objectives CISO: translates InfoSec objectives into tactical and operational objectives Implementation can now begin Implementation of information security can be accomplished in two ways Bottom-up Top-down

25 Bottom-Up Approach Grass-roots effort
Individual administrators try to improve security No coordinated planning from upper management No coordination between departments Unpredictable funding

26 Top-Down Approach Strong upper management support A dedicated champion
Assured funding Clear planning and implementation process Ability to influence organizational culture

Download ppt "Strategy and Strategic Planning:"

Similar presentations

Rock Paper Scissor Tournament. STRATEGIC MANAGEMENT PROCESS 1.4.

Rock Paper Scissor Tournament. STRATEGIC MANAGEMENT PROCESS 1.4.
Appendix A © 2014 Cengage Learning. All Rights Reserved. May not be scanned, copied or duplicated, or posted to a publicly accessible website, in whole.

Appendix A © 2014 Cengage Learning. All Rights Reserved. May not be scanned, copied or duplicated, or posted to a publicly accessible website, in whole.
Management of Information Security Chapter 2: Planning for Security

Management of Information Security Chapter 2: Planning for Security
TEL2813/IS2820 Security Management

TEL2813/IS2820 Security Management
MANAGEMENT of INFORMATION SECURITY Second Edition.

MANAGEMENT of INFORMATION SECURITY Second Edition.
TEL2813/IS2820 Security Management

TEL2813/IS2820 Security Management
Introduction to Hospitality, 6e

Introduction to Hospitality, 6e
Objective Explain What is the Balanced Scorecard

Objective Explain What is the Balanced Scorecard
Foundations of Business 3e

Foundations of Business 3e
Slide 2-1.

Slide 2-1.
Leaders Facilitate the Planning Process

Leaders Facilitate the Planning Process
S TRATEGIC M ANAGEMENT. Translating a Mission and Overall Goals into Strategic Outcomes Mission (Why We Exist) To Increase enterprise Value Mission (Why.

S TRATEGIC M ANAGEMENT. Translating a Mission and Overall Goals into Strategic Outcomes Mission (Why We Exist) To Increase enterprise Value Mission (Why.
National Association of Healthcare Access Management Strategic Planning Session-Agenda Washington, DC 15-16 January, 1999.

National Association of Healthcare Access Management Strategic Planning Session-Agenda Washington, DC January, 1999.
MANAGEMENT of INFORMATION SECURITY Third Edition C HAPTER 2 P LANNING FOR S ECURITY You got to be careful if you don’t know where you’re going, because.

MANAGEMENT of INFORMATION SECURITY Third Edition C HAPTER 2 P LANNING FOR S ECURITY You got to be careful if you don’t know where you’re going, because.
INFORMATION SECURITY MANAGEMENT L ECTURE 2: P LANNING FOR S ECURITY You got to be careful if you don’t know where you’re going, because you might not get.

INFORMATION SECURITY MANAGEMENT L ECTURE 2: P LANNING FOR S ECURITY You got to be careful if you don’t know where you’re going, because you might not get.
The Integrated Campaign

The Integrated Campaign
17/9/2009 Nakato Ruth Chapter one Introduction and review of strategic management.

17/9/2009 Nakato Ruth Chapter one Introduction and review of strategic management.
1 Ch. 4 Outline Introduction to Planning 1.Planning Fundamentals 2.Levels of Planning 3.Strategic Planning.

1 Ch. 4 Outline Introduction to Planning 1.Planning Fundamentals 2.Levels of Planning 3.Strategic Planning.
Management Roles, Functions, and Skills

Management Roles, Functions, and Skills
© Prentice Hall, 2002 End Show 1 - 1 1 Strategic Management in Action Introducing the Concepts.

© Prentice Hall, 2002 End Show Strategic Management in Action Introducing the Concepts.

Similar presentations

Ads by Google