What is the role of Chief Information Security Officer?
I’m responsible for the protection of information in digital form. This includes the information assets of the company such as intellectual property, customer data, trade secrets, source code, and any confidential information on our network, servers, or storage. I don’t handle physical site security, which covers buildings, badges, and lobby officers. Q: How do you manage the paradox of keeping the network open to those you want to let in and closed to those you want to keep out? We use standard “access control” practices that have been in place for years. We have a clear understanding of who is authorized to access Sun’s wide area network, whether they be employees, or a part of a large family of Sun-associated folks, such as contractors, consultants, vendors, partners, external manufacturers, resellers, etc. We employ all of the good old methods of access control including identity management, access management, role management, and more. Our corporate culture is fairly open — more l
