Watch this video on YouTube
A newly appointed CISO at a financial institution is evaluating the current state of security. What should be the CISO's INITIAL action in this scenario?