The energy and momentum created when a new leader takes the reins unlocks opportunities, but if CISOs don’t handle their first 90 days well, they risk alienating stakeholders and isolating themselves. To be effective, they must tackle three tasks in the first 90 days: establish competence by gaining situational awareness, cultivate relationships by showing empathy, and demonstrate integrity in the guiding principles of the security culture they want. In this report, we look at why it’s crucial for a new CISO to understand what the organization does, where it’s growing, who are the leaders involved, and how the security team and program can help.