Governance

Governance Services help organisations introduce a means by which they can organise and direct security and privacy.

Governance services typically include the creation of risk, change and supplier passements processes along with the organisations policy framework, mechanism for reviewing performance and internal audit arrangements.

Governance services address questions such as:

• What are our documented arrangements for managing security and privacy?
• Who is responsible for security and privacy?
• How will the organisation measure and analyse whether the security and privacy functions are working?
• How will suppliers be managed?
• How and with what frequency will risk be assessed?
• How will the organisation respond to change and incidents?
• When will internal audits be conducted?