Has had the responsibility for sponsoring and managing several hundred projects large and small. CPPM has the proven expertise to apply to your cybersecurity initiatives whether it be full-time, part-time or just in time.
Strategy & Planning
Strategy is imperative in order to develop an approach that is right for the organization to meet its risk appetite and the demands of external stakeholders such as customers and regulators. Planning is necessary to operationalize the strategy by assigning priorities and sequencing initiatives, identifying direct and indirect impacts, and determining resources and budget needed.
Overseeing, directing, monitoring and reporting on the portfolio of all cybersecurity initiatives. Compromised of a combination of stand alone projects and programs of tightly coupled projects. Managing the interdependencies, competing resource demands and reporting to stakeholders can be challenging.
Managing projects requires people, process and technology management expertise. Internal cyber experts often do not have all the project skills that are required. Project mechanics skills are a must. Just as important are the soft skills dealing with matrixed part-time resources, internal & external stakeholders, and vendors.
Project Due Diligence
Projects can hit what appear to be insurmountable obstacles. Or even though indicators are favorable, the project sponsor wants reassurance that everything is on track. A thorough assessment requires examining a multitude of facts and opinions, and using expert judgment to evaluate and make recommendations.
Negotiating & Vendor Relations
Security managers may not have a lot of experience negotiating technology or managed services contracts. In addition there are unique aspects of cybersecurity agreements that must be taken into consideration, not just the purchase and implementation but ongoing operations as well.