Professional Documents
Culture Documents
CISM Study Notes
CISM Study Notes
IT Security - Data in storage, data in transit, ip security, IPS, firewall, AV, ACLs
Information Security Governance - Securing fax area, background checks on staff,
making sure paper docs are shredded, CCTV, armed guards, working with law
enforcement.
IT Security is a subset of Information Security Governance!
INFOSEC MANAGER
- In charge of IT Security Depts - Handling complex protection of systems, critical
data, processes
- Most CISO's report to CEO, CIO, B of D, Speciality Officers
- Must have support, buy-in, commitment from Senior management
- Inforsec manager should
- Develop/Report security stratagy input
- make presentations to senior management
- construct teams/commitees and develop team leaders
- intergrate 3rd parties and vendors, consultants