Institute Cybersecurity and Risk Governance Practices to Improve Information Security
Gartner Analysts Tom Scholtz and Rob McMillan assert that “In many organizations, security and security risk governance practices are still immature, and they often lack executive support and business participation.” At Coalfire, we have noticed the same thing, so we are doing something about it: we have licensed the Gartner research note to provide you a complimentary copy of their recommendations.
In the report, you will discover a framework for cybersecurity and risk governance and get expert recommendations on how to create a governance program that supports accountability, authority, risk management and assurance.
Figure 1. Macro Security and Risk Governance Process
This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from Coalfire.
GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally, and is used herein with permission. All rights reserved.