Security Goverence Flashcards
Governance
The process of how an organization is managed usually includes all aspects of how decisions are made for that organization such as policies, roles, and procedures the organization uses to make those decisions
Security governance
The entirety of the policies, roles, and processes the opposition uses to make security decisions in an organization.
Governance Committee
Formal body of personnel who determine how decisions will be made within the organization and the entity that can approve changes and exceptions to current relevant governance
Security control framework
A notional construct outlying the organization’s approach to security including a list of specific security processes, procedures, and solutions used by the organization.
Want this to be top down approach which means SR.leadership initiates strategies policies and guidelines