Rudy Bakalov, senior manager, and Stephane Heyres, principal, Ernst & Young

In the last couple of years, the role of the information security function in many organizations has achieved recognition as an important component of the organization's overall risk management strategy.