Security Management

Process

Security Management is closely related to practically all other IT processes and needs the cooperation of the whole organisation in order to be a success.

For this collaboration to be effective it is necessary that Security Management:

• Establishes a clear and well defined security policy that serves as a guide to all the other processes.
• Draws up a Security Plan that includes all the appropriate levels of security in both the services provided to customers and those service agreements signed with internal and external service providers.
• Implements the Security Plan.
• Monitors and evaluates compliance with the plan.
• Proactively supervises the levels of security by analysing trends, new risks and vulnerabilities.
• Periodically conducts security audits.

Note: using the buttons on the graphic you can access more detailed information about the links with other IT processes.