CISM: Information Security Roles and Responsibilities

From Glitchdata

Jump to navigation Jump to search

Information Security Roles and Responsibilities are subset of CISM: Risk Management Roles & Responsibilites
IMMEDIATE benefit to define R&R makes it clear who is accountable for performance and outcomes.

Roles

Some common IT security roles:

Chief Information Officer (CIO)
- Focused on Information Technology
Chief Information Security Officer (CISO)
- Conflicts of interest may arise if the CISO reports to CIO as security is often seen as a constraint on IT.
Information Security Manager (ISM) is focused on implementation.

Retrieved from ‘https://wiki.glitchdata.com/index.php?title=CISM:_Information_Security_Roles_and_Responsibilities&oldid=29863’

CISM Domain 1