Security Relationship Management and The Shortest Hour Two-Book Bundle

Description

1st Edition Security Relationship Management Leveraging Marketing Concepts to Advance a Cybersecurity Program Aligning information security to the goals and strategies of the business is paramount for ensuring risks are addressed, without an abundance of negative impacts to the company. But how does a Chief Information Security Officer (CISO) accomplish effective alignment? A security executive... Read more

1st Edition Security Relationship Management Leveraging Marketing Concepts to Advance a Cybersecurity Program Aligning information security to the goals and strategies of the business is paramount for ensuring risks are addressed, without an abundance of negative impacts to the company. But how does a Chief Information Security Officer (CISO) accomplish effective alignment? A security executive must understand the detailed needs of business leaders and stakeholders from across all corners of the company. We cannot rely on a standard cadence of general security discussions across all of the lines of business, as well as functional areas, and expect our alignment to be maximally effective. Instead, we should promote our security programs in such a way that makes it personal to whomever we are speaking with at any given time. By leveraging already established and tested marketing concepts, slightly altered for information security, the CISO can tailor their message to fit the needs of each stakeholder. This allows for in-depth business alignment, as well as a holistic view of the company’s underpinnings for the CISO. Within these pages, the reader will learn how segmentation, the Four Ps, and customer relationship management techniques, can help to transform their security program. Additionally, the book introduces a concept called Security Relationship Management (SRM) that optimizes the creation and nurturing of the hundreds of professional relationships (within and outside the company) that a CISO must balance each week. Through structured tracking of interactions and analyzing SRM data, the CISO ensures that relationships are managed effectively, which increases alignment between the business and cybersecurity initiatives. Pick up your copy of Security Relationship Management: Leveraging Marketing Concepts to Advance a Cybersecurity Program, today to begin your SRM journey. Please visit www.novelsecurity.com for more information. 1st Edition The Shortest Hour An Applied Approach to Boardroom Governance of Cyber Security Independent directors of corporate boards understand the importance of cyber security as a business issue. Increased regulatory requirements, the onslaught of breaches, as well as the replacement of the corporate network perimeter with more third-party partnerships have all contributed to cyber security rising to the top of enterprise risks. Yet, many directors only receive a few brief cyber security updates during the year. Moreover, many directors have devoted their careers to other important business disciplines and may not fully grasp the technical concepts of cyber security. The challenge is that many publications on board cyber security governance address the topic at such a high level that it removes the important context of the cyber security details—or covers the topic too deeply with hard-to-understand technical language. These resources may often provide lists of security questions for directors to ask of their management team, but they do not provide the answers to the questions so that actionable oversight can be performed. What I would have wanted, and why you are probably reading this book summary, is a resource that delivers the questions to ask but also provides the answers and in a narrative, easy-to-understand style. An award-winning Chief Information Security Officer with over two decades of working with multiple Fortune 500 boards, Lee Parrish provides an example-laden vision to improve cyber security governance in the boardroom. Additionally, Lee deciphers the technical jargon to increase the reader’s cyber fluency—not to make you a cyber expert but to help you be able to ask direct questions, understand the answers provided, challenge strategies, and advise on important cyber decisions. Pick up your copy of The Shortest Hour: An Applied Approach to Boardroom Governance of Cyber Security today and start your journey on achieving more effective cyber security oversight. Want to learn more? Please visit www.novelsecurity.com Read less

Author(s)

Biography

Lee Parrish is an award-winning technology executive with over two decades of unique experience in blending cybersecurity expertise with essential business competencies. As a Chief Information Security Officer, he has built customized cybersecurity strategies for global Fortune 500 corporations and has led real-world incident responses to cyber events. Lee has served as a trusted advisor on cybersecurity to multiple boards consisting of Chief Executive Officers, a former White House Chief of Staff, retired high-ranking military officers and a former U.S. Presidential candidate.

Lee possesses two graduate degrees and is certified as both a Boardroom Qualified Technology Expert as well as a Certified Information Systems Security Professional. He has published numerous articles in industry journals, contributed to a best-selling information security book, and authored The Shortest Hour: An Applied Approach to Boardroom Governance of Cyber Security, as well as a children’s book on cybersecurity. He is a frequent speaker at international security conferences and a guest on various podcasts.

Lee is a combat veteran of the United States Marine Corps.

Critics' Reviews

Security Relationship Management is notable for applying marketing theory to cyber
leadership. He replaces talk of firewalls with the “four Ps”. He argues that CISOs
must intentionally design their services, decide when to outsource, manage how
those services are delivered, and build a recognizable brand in a healthcare system
that translates into risk-based service catalogues, differentiated support for clinicians
and executives, and concise briefings that keep security visible without spamming
busy staff.
The heart of the book is stakeholder segmentation. Parrish recommends mapping
the organization into discrete groups—boards, executive teams, business units, and
vendors—and tailoring messages and metrics to each. An accompanying ABC
model and simple scoring system track relationship strength by rewarding face-to-
face engagement and flagging long gaps.
Where the book shines is in its emphasis on soft skills. Parrish warns against
carpetbombing stakeholders with alerts, urges leaders to align security initiatives
with their “wants,” and suggests small gestures—handwritten notes, coffee chats—to
build trust. This focus on branding and relationships encourages CISOs to evolve
from reactive technologists into advisors who speak the language of the business.
The drawback is that healthcare-specific issues like HIPAA and medicaldevice
security get only passing mention, and smaller teams may struggle to maintain
contact cards and scoring. Still, for those willing to adopt a marketing mindset, the
book offers a human framework for making security programs resonate with
stakeholders.

Keith Duemling, Chief Information Security Officer

Just finished reading Security Relationship Management: Leveraging Marketing Concepts to
Advance a Cybersecurity Program by Lee Parrish LinkedIn, and I’m genuinely inspired.
As someone deeply interested in auditing policy and governance around GenAI and information
security, this book resonated with me on multiple levels. Parrish’s approach to integrating
marketing principles into cybersecurity leadership is not just innovative: it’s practical, human-
centred, and refreshingly actionable.
What stood out most was the concept of Security Relationship Management (SRM)—a
structured, data-driven way to build and nurture relationships across the enterprise. It’s a
reminder that cybersecurity isn’t just about controls and compliance; it’s about people, trust, and
strategic alignment.
“If you aspire to be in a role and wish to be in a position of contributing more, act like you are
already in that role.” — Lee Parrish
This quote hit home. It’s a call to lead with intention, to build bridges across departments, and to
elevate the CISO role from technical guardian to strategic partner.
Whether you're a security leader, auditor, or someone navigating the intersection of business and
technology, this book offers a compelling roadmap for making cybersecurity personal, relevant,
and impactful.
Highly recommended for anyone looking to deepen their influence and build meaningful
connections in the cybersecurity space.

Posted to LinkedIn by Yves Genest, Senior Executive and Experienced Internal
and Performance Audit.

Security Relationship Management is notable for applying marketing theory to cyber
leadership. He replaces talk of firewalls with the “four Ps”. He argues that CISOs must
intentionally design their services, decide when to outsource, manage how those services are
delivered, and build a recognizable brand in a healthcare system that translates into risk-based
service catalogues, differentiated support for clinicians and executives, and concise briefings
that keep security visible without spamming busy staff.
The heart of the book is stakeholder segmentation. Parrish recommends mapping the
organization into discrete groups—boards, executive teams, business units, and vendors—and
tailoring messages and metrics to each. An accompanying ABC model and simple scoring
system track relationship strength by rewarding face-to-face engagement and flagging long
gaps.
Where the book shines is in its emphasis on soft skills. Parrish warns against carpetbombing
stakeholders with alerts, urges leaders to align security initiatives with their “wants,” and
suggests small gestures—handwritten notes, coffee chats—to build trust. This focus on
branding and relationships encourages CISOs to evolve from reactive technologists into

advisors who speak the language of the business. The drawback is that healthcare-specific
issues like HIPAA and medicaldevice security get only passing mention, and smaller teams
may struggle to maintain contact cards and scoring. Still, for those willing to adopt a
marketing mindset, the book offers a human framework for making security programs
resonate with stakeholders.

Keith Duemling
Chief Information Security Officer

Security Relationship Management and The Shortest Hour Two-Book Bundle

Description

Table of Contents

Author(s)

Biography

Critics' Reviews

SOCIAL NETWORKS

Secure Shopping Payment Options