Learn What You, as Senior Management, are Responsible for Related to Information/Cyber Security
December 8, 2016
Protecting your organization's information is critical for the successful management and smooth operation of your organization. A good Information Security Management System is a process for implementing controls, which include policies and procedures to manage and protect the organization's assets. It's not only important to keep your confidential information secure, but also to provide customers and stakeholders with a confidence in your risk management system while ensuring you are meeting legal obligations.
Learn what Management is responsible for within the Information Security Management System and how to manage those responsibilities. Learn also the landscape of legal risk that arises from a potential data breach, as well as the overlapping and -- at times -- contradictory laws and regulations that apply. From a legal perspective, the first step is to select and implement an appropriate Information Security Management System for your organization. That first step will help mitigate legal risks for the organization arising from the ever-present threat of a data breach.
Michael C. Redmond, PhD, MBA, PMP, CEM, MBCP, FBCI, ISO Lead Strategic Consultant, EFPR Group
F. Paul Greene, Partner, Harter, Secrest and Emery, LLP