Outlines a seven-step methodology for building an effective InfoSec program by focusing on the "art," or people side, of security. The author, Todd, draws on over two decades of experience to argue that success hinges on cultivating strong relationships and ensuring alignment with the company's risk tolerance, as most organizations are indifferent to information security. The book advocates for the "neighborhood watch" model where security responsibilities are shared across the company, rather than centralized, emphasizing key processes like documentation, governance, security architecture, and communication as vital cornerstones for establishing a security culture. Finally, the text suggests measuring success through simple, relatable metrics like an employee's ability to identify and report phishing emails and policy violations, to demonstrate the program’s return on investment to leadership.You can listen and download our episodes for free on more than 10 different platforms:https://linktr.ee/cyber_security_summaryGet the Book now from Amazon:https://www.amazon.com/Managers-Guide-Information-Security-Domain/dp/149207621X?&linkCode=ll1&tag=cvthunderx-20&linkId=35de11d3f76496577dcb908743bf4a7c&language=en_US&ref_=as_li_ss_tlDiscover our free courses in tech and cybersecurity, Start learning today:https://linktr.ee/cybercode_academy