Who cares about office politics? At the end of the day, isn't it all about doing what's best for the business by protecting its assets? Or implementing the best technical idea? Sadly, no.
Technically savvy cybersecurity professionals often find themselves performing well in individual contributor roles and then getting promoted to management and executive positions. The rules of engagement, however, change as one moves up the corporate ladder. How does a cybersecurity leader communicate to non- cybersecurity experts the value of a program and all the expense that goes along with implementing information security activities? What's the best way to ensure that optimal decisions for the business are made when push comes to shove?