💼 11 Definition of information security-related roles and responsibilities is typically achieved through a combination of role statements, policy statements, reporting lines and charters of governing bodies. Common governing bodies and individuals with decision-making, approval, oversight, operations and other information security roles and responsibilities typically include:

Contextual name: 💼 11 Definition of information security-related roles and responsibilities is typically achieved through a combination of role statements, policy statements, reporting lines and charters of governing bodies. Common governing bodies and individuals with decision-making, approval, oversight, operations and other information security roles and responsibilities typically include:
ID: /frameworks/apra-cpg-234/03/11
Located in: 💼 3 Roles and responsibilities - Clearly defined roles and responsibilities

Description

Empty...

Section	Sub Sections	Internal Rules	Policies	Flags
💼 11a information security steering/oversight committee.
💼 11b risk management committee (Board and management levels).
💼 11c Board audit committee.
💼 11d executive management/executive management committee.
💼 11e chief information officer (CIO)/IT manager.
💼 11f chief information security officer (CISO)/IT security manager.
💼 11g information security operations/administration.
💼 11h management (business and IT).