Drivers for effective security governance

There are many converging drivers that require every organization to have an effective security governance function. These drivers include:

 

Growing compliance regulations, including new laws and regulations designed to force improvement in organizational governance, security, controls and transparency.

Clearly defining information risk parameters and risk assumption frameworks. This means that you need to define and publish risk tolerance parameters and who can assume that risk, along with proper vetting similar to credit reviews done at banks.

The expanding cyber threat landscape, because threats have increased the need for a governance approach to information management.

Increasing technological risks. Virtualization, cloud computing, mobile computing, IT consumerism, social networks, data cloud storage and sharing all require effective security governance oversights.

<a href=" www.tenable.com/blog/strategies-for-security-governance "> www.tenable.com/blog/strategies-for-security-governance </a>

management plays a vital role also..