Information security breaches can expose an organization to compliance risk, cause harm to customer relationships and result in financial or operational damages. This makes good information security governance and management practices critical to the success of every organization.
ISACA’s recent publication COBIT® Focus Area: Information Security is a comprehensive guide to information security designed to clarify the roles of governance and management and how they relate to each other. COBIT® Focus Area: Information Security discusses other major frameworks such as the International Organization for Standardization/International Electrotechnical Commission (ISO/IEC) 27000 series, Capability Maturity Model Integration (CMMI), Information Security Forum (ISF) and more to offer a contemporary perspective about information security governance and management. This publication is an extension of COBIT® guidance, elaborating on additional metrics and activities that should be accounted for when implementing or assessing COBIT in the information security space.
Strengthen your information security governance and management and increase the capabilities of your enterprise by reading COBIT® Focus Area: Information Security, available on the ISACA® website.