5 Pitfalls Issuing Information Security & Privacy Policies – Charles Cresson Wood – CSP #40

Sponsored By

Visit https://www.cybereason.com/cisostories for more information!

The interviewee created the landmark ‘gold standard’ policy guidance in the book Information Security Policies Made Easy, now in its 13th version, and has extensively researched and helped organizations develop relevant policies. This podcast discusses the 5 key mistakes individuals make in creating and delivering policies to the organization.

To view the article from the CISO COMPASS Book that sparked this interview, please visit: https://securityweekly.com/wp-content/uploads/2021/07/CISOSTORIES_Charles_Cresson_Wood_Article.pdf

Wood, C. 2019. Five Pitfalls to Avoid When Issuing Information Security and Privacy Policies In CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers, 1st Ed, pg 413. Fitzgerald, T. CRC Press, Boca Raton, Fl. www.amazon.com/author/toddfitzgerald.

This segment is sponsored by Cybereason. Visit https://www.cybereason.com/cisostories to learn more about them!

Full Episode Show Notes

5 Pitfalls Issuing Information Security & Privacy Policies


Charles Cresson Wood

Charles Cresson Wood – Attorney & Management Consultant at InfoSecurity Infrastructure, Inc.

Charles Cresson Wood, Esq., JD, MBA, MSE, CISA, CISM, CGEIT, CIPP/US, CISSP, is best known for his book entitled “Information Security Policies Made Easy,” which has been used by over 70% of the Fortune 500 companies. He has been working, as a consultant and researcher, in the information security and privacy field for over 40 years, and has most recently published the book entitled “Corporate Directors’ & Officers’ Legal Duties for Information Security and Privacy: A Turn-Key Compliance Audit Process.”


Todd Fitzgerald

Todd Fitzgerald – Vice President, Cybersecurity Strategy at Cybersecurity Collaborative


Todd Fitzgerald has built information Fortune 500/large company security programs for 20 years. Todd serves as VP, Cybersecurity Strategy and Chairman of the Cybersecurity Collaborative Executive Committee, was named 2016–17 Chicago CISO of the Year, ranked Top 50 Information Security Executive, authored 4 books including #1 Best Selling and 2020 CANON Hall of Fame Winner CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers (2019), ground-breaking CISO Leadership: Essential Principles for Success, as well as contributions to a dozen others. Todd held senior leadership positions at Northern Trust, Grant Thornton International, Ltd, ManpowerGroup, WellPoint (Anthem) Blue Cross Blue Shield/ National Government Services, Zeneca/Syngenta, IMS Health and American Airlines.