15.3 – Review and Modify

15.3 – Review and Modify
Executive management and Directors have a fiduciary responsibility to manage the organization in a responsible way. It is essential that they are able to exactly measure adherence to policy instructions, the efficiency, and development of organization security policies. Standardized methodologies such as review and modify can be used as review and reporting method. Organizations may elect to conduct this reviewing process by engaging independent third parties or using in-house personnel. The decision principles include the complexity and size of the organizations, regulatory requirements, segregation of duties and available expertise. To be considered independent, evaluators should not be responsible for, profit…
To access this content, you must subscribe to this Consolidated Tekedia Subscription, or log in if you are a member.

Share this post