Abstract
The Information Security Steering Committee provides the catalyst for securing customer and business information from physical and non-physical threats among other roles in the company. This group of select business individuals, led by an emerging role of a Chief Information Security Officer, uses their expertise in their industry to create a policy that can secure the information without degrading performance or disrupting the shareholder interest. The role of the ISSC bridges the gap between the business process, security, and IT.