Building a meaningful strategy requires alignment with what the business needs and attention to customer and compliance obligations. In this phase, you will achieve these by:
- Performing a security pressure analysis.
- Defining business, customer, and compliance obligations.
- Outlining the scope and boundaries of the security program.
- Defining organizational security risk tolerance.
Use this phase as part of the full blueprint, Build an Information Security Strategy.