O'Reilly logo

Developing Cybersecurity Programs and Policies, Third Edition by Sari Greene, Omar Santos

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Chapter 4

Governance and Risk Management

Chapter Objectives

After reading this chapter and completing the exercises, you will be able to do the following:

  • Define governance.

  • Explain cybersecurity governance and NIST’s Cybersecurity Framework.

  • Explain the importance of strategic alignment.

  • Know how to manage cybersecurity policies.

  • Describe cybersecurity-related roles and responsibilities.

  • Identify the components of risk management.

  • Create policies related to cybersecurity policy, governance, and risk management.

NIST’s Cybersecurity Framework provides guidelines around the governance structure necessary to implement and manage cybersecurity policy operations, risk management, and incident handling across and outside of the organization. The ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required