...
Each of the collaborating infrastructures has:
What: | "A person or team mandated to represent the interests of security for the infrastructure." |
Why: | To ensure that implementing infrastructure security policy is clearly defined as an individual or group core responsibility, giving it appropriate priority and authority within the organisation for necessary actions to be carried out. To prevent confusion and delay in the event of a reported incident. |
How: | Designate an individual, or team, with responsibility for the development and oversight of activities required to implement security policy, including those to address and mitigate security risks. Provide, or delegate to, a clear point of contact within the infrastructure for all matters related to security, including incident handling. |
Checks: |
|
OS2 - Risk Management Process
...