Tucker Bailey, James M. Kaplan, Chris Rezek

When companies think about cybersecurity […] most ask, “How can we protect ourselves and comply with standards or regulations?” instead of “How do we make confident, intelligent investments given the risks we face?” Many also treat cybersecurity primarily as a technology function rather than integrating it into business operations. As a result, they get the wrong answer about how to construct a cybersecurity program.

Repelling the Cyberattackers

Organizations must build digital resilience to protect their most valuable information assets.

Managing next-generation IT infrastructure

The days of building to order are over. The time is ripe for an industrial revolution.

Recentralizing IT

Companies can run their IT systems more efficiently by creating new organizational structures in which IT departments and business units share responsibility.