Summary

The fictitious corporation, IWC, can be used by the reader to build a CIAPP or improve a CIAPP for a corporation. Most corporations set their goals and objectives in planning documents such as strategic, tactical, and annual business plans. These plans are key documents for the ISSO to read and use to determine the corporation's future directions.

These plans are also key documents that the ISSO may be able to use to determine what is expected from the ISSO and the CIAPP. The plans should also be used as the basis for writing service and support assets protection plans, as separate documents or as sections which are integrated into the identified corporate planning documents.

The decision process of the IWC executive management in determining in which department the ISSO and the corporate security organization belongs provides some key information which should be used by the ISSO in establishing the CIAPP and organization. It helps identify potential "power plays" by managers and provides a glimpse of the corporate political environment.

The ISSO must look at IWC from a global perspective and consider political, technological, economic, criminal, terrorist, and other events around the world. This broad scope is required when developing a CIAPP for IWC that will meet the worldwide needs of the IWC, now and into the future.