The CISO creed
Something a little fun, adapted from the US Army Non-commissioned officer (NCO) creed.
No one is more professional than I. I am a Chief Information Security Officer, a leader of Security Pros.
As a Chief Information Security Officer, I realize that I am a member of an honored profession, which is known as “The Protectors of the Business”.
I am proud of the Society of Chief Information Security Officers and will always conduct myself to bring credit upon our ranks, our office, and business regardless of the situation in which I find myself. I will never use my position to harm anyone, the business, or in a nefarious manner.
Competence is my watchword. My two basic responsibilities will always be uppermost in my mind – accomplish the mission, and the welfare of my staff.
I will strive to remain technically and tactically proficient. I am aware of my role as a Chief Information Security Officer. I will fulfill my responsibilities inherent in that role.
All Security pros are entitled to outstanding leadership; I will provide that leadership. I know my staff and I will always place their needs above my own. I will communicate consistently with my staff, and peers and never leave anyone uninformed. I will be fair and impartial in every aspect of my life, actions, and business.
My Bosses will have maximum time to accomplish their duties; they will not have to accomplish mine. I will earn their respect and confidence as well as that of my staff. I will be loyal to those with whom I work; seniors, peers, and staff alike. I will exercise initiative by taking appropriate action in the absence of orders.
I will not compromise my integrity, nor my moral courage. I will not forget, nor will I allow my comrades to forget that we are professionals, Chief Information Security Officers; LEADERS!