Successful information security leaders realize that long-term perspective sharpens their short-term view and decision-making abilities. They innovate, not for quick fixes, but instead for long-term business improvements. They do not major in minors but rather focus their organization's unique talents and offerings on information security solutions that embrace the business. They know that inspiring trust rather than relying on tight controls is the best way.
My final point is that successful information security leaders focus on leading rather than putting out fires. Their nature is to be proactive rather than reactive, and they keep things practical focusing their efforts (and budgets) on areas with the highest payoffs. Perhaps most importantly, successful information security leaders know they must continuously focus on their ongoing education to keep their skills sharp and keep up with the latest trends so they can stay on top of this critical business role.
Kevin Beaver is an information security consultant, expert witness, author and professional speaker with Principle Logic, LLC. With over 21 years of experience in the industry, he specializes in performing independent security assessments revolving around minimizing information risks. He has authored/co-authored eight books on information security including "Hacking For Dummies." In addition, he's the creator of the Security On Wheels information security audio books and blog providing security learning for IT professionals on the go. Contact him at www.principlelogic.com and follow him on Twitter at @kevinbeaver.