The discipline of evaluating an organization's information security program against a recognized standard, such as the HIPAA Security Rule, NIST Cybersecurity Framework, or ISO 27000.
The discipline of providing information technology leadership roles such as Chief Information Security Officer or Chief Information Officer on an interim or long-term / part-time basis.
The discipline of designing and facilitating a personalized disaster scenario in order to validate plans and procedures, and to train teams in the art of responding to a business emergency or incident.
The discipline of understanding what is important to a business (people, processes, technology, assets, etc.), and developing and implementing a strategy to protect them.
The discipline of understanding data and system recovery time and recovery point objectives and architecting technical solutions to ensure the capability to recover in the event of a disaster.