Security is at the top of the corporate agenda and at the heart of agency missions. The impact of effective security on brand protection, corporate governance, accountability to shareholders is measured in good will and dollars spent to repair damages. The drive to "be secure" is a mandate for doing business today. Most organizations can look back to 2005 and attest to the improvements made: policy and process maturity, staff development and education and awareness of all employees. Today deliberate and strategic security strategies and IT governance model developed in the context of business objectives is the goal, if not already the standard.