This is the core of our security program. Our security governance program includes assessments, gap analysis, security policies and procedures, change management, vendor management, etc.
– Make a list of hardware, software, and data.
– Map organization communication and data flow.
– Catalog external information systems.
– Establish cybersecurity roles and responsibilities for the workforce.
– Create and share a company cybersecurity policy.