Why does a CISO need to be able to differentiate the drivers of corporate governance and IT governance?
Compare and contrast corporate and IT governance from the standpoint of someone trying to explain the difference to IT personnel who may not know the corporate drivers.