Cybersecurity professionals must understand that their job is protecting a company or entity, said Roland Cloutier, global chief information security officer for TikTok. In order to protect that organization effectively, cyber pros must understand the business.
“How do you prioritize if you don’t understand the business? One of the base concepts I’m trying to get across is: know your business and be a part of your business to effectively make great decisions,” Cloutier shared with Todd Fitzgerald, vice president of cybersecurity strategy at the Cybersecurity Collaborative, during episode 17 of the CISO Stories podcast.
Cloutier discussed the five critical elements of a cyber asset protection program (CAPP), which includes:
- Risk evaluation and prioritization
- Defining assets
- Defining standards
- Remediation
- Monitoring
As global chief security officer of ByteDance and TikTok, Cloutier has over 25 years of experience in the military, law enforcement and the commercial sector. Cloutier previously served 10 years as corporate vice president and global chief security officer at ADP, a global provider of comprehensive payroll services and human resources management solutions.