D. BlumRational Cybersecurity for Businesshttps://doi.org/10.1007/978-1-4842-5952-8_3

3. Put the Right Security Governance Model in Place

Dan Blum¹

(1)

Silver Spring, MD, USA

Just as a Constitution sets forth how to govern a nation, security charters and policies can formally define security-related roles and responsibilities for a business. Security governance is a set of processes and capabilities operated jointly by security and business leaders. The combined leadership manages cybersecurity risk, policy, budgets, and reporting to executives or stakeholders.

When security governance is well defined, the CISO has the right balance of authority and responsibility. Business and security leaders can handle security issues in a ...

Get Rational Cybersecurity for Business: The Security Leaders' Guide to Business Alignment now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Rational Cybersecurity for Business: The Security Leaders' Guide to Business Alignment by Dan Blum

3. Put the Right Security Governance Model in Place

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly