Daniela, Brian, and Glen delve into the difficulties of getting organizations to prioritize and support risk management, IT, and information security. They discuss how departmental silos, conflicting priorities, and a lack of understanding can lead to these areas being marginalized. The conversation explores the tension between documenting risks and the need for action, the importance of relationship-building to bridge communication gaps, and the challenge of shifting organizational mindsets. The hosts emphasize that securing buy-in is an ongoing process, requiring persistence, proactive engagement, and a recognition that organizational change takes time and may necessitate seeking alignment elsewhere.
