Global Security Strategy PDF Print E-mail

When I became a member of his staff, David Butler, CIO, asked me to create and position the Global Security and Audit Compliance department, short ISAAC. The main deliverable for this position was the formulation of a global security strategy and architecture. This was in 1st half 1999.

I developed and started the implementation of this strategy in the one year that I actually worked for Dave. I understood early on that there were three rather important pillars to the strategy:
  • Processes
  • People
  • Infrastructure

I developed the appropriate processes for compliance management, project support and escalation together with the global IS, especially Jim Haney, a fellow staff member.

The people side of the strategy targeted awareness and support. Here the availability of all documents in all languages plus the ability to get answers easy was key. Support comes from solving problems or reducing risk, not by bureaucracy.

The infrastructure portion was relatively easy. Using Whirlpool Web World as a launch point, we were able to slowly convert all systems onto a common directory (using LDAP as the enabler), including the Notes rollout which replaced the tired cc:mail. Today, Whirlpool has a world-class security infrastructure, to a small part because of my involvement early on.

All of this was wrapped into a common architecture that we developed together with E&Y and IBM.

When this project was on its way, Dave asked me to take a look at another rather interesting project: Rivermark. Thas project became later "Integrated HomeSolutions": IHS.
 
View Juergen (Jay) Heuer's profile on LinkedIn
XING
RocketTheme Joomla Templates