Download (Member Only, 833K) Purchase the Book Purchase the e-Book
Provide feedback on this document Visit the Information Security Management Knowledge Center community
Information Security Governance: Guidance for Information Security Managers discusses how to develop an information security strategy within the organization’s governance framework and how to drive that strategy through an information security program. It provides guidance on determining information security objectives and how to measure progress toward achieving them. It is an exposition on the rationale and necessity for senior management to integrate information security into overall organizational governance at the highest levels. It provides information developed in recent years that mandates the business case for information security governance.
Although, for continuity and clarity, some of the information from the companion publication, is summarized in this document, a review of that publication is recommended for an understanding from a high-level strategic governance perspective. Download Information Security Governance: Guidance for Boards of Directors and Executive Management, 2nd Edition.