![]() ![]() The purpose of this policy is to identify areas of risk in a timely manner and manage them to ensure continuity of business processes. The Risk Assessment Team is responsible for ensuring the integrity, confidentiality, and availability of critical information and computing assets on networks while minimizing the impact of security procedures and policies upon business missions. Risk – Those factors that could affect confidentiality, availability, and integrity of XXX’s key information assets and systems. 2 DefinitionsĮntity – Any business unit, department, group, or a third party, internal or external to XXX, responsible for maintaining assets. The policy and respective procedures, guidelines & forms shall be available to the CISO and members of senior management. Employees are further expected to work with the Risk Assessment Team in the development of a remediation plan. Employees are expected to cooperate fully with any Risk Assessment being conducted on systems for which they are held accountable. To meet the enterprise business objectives and ensure continuity of its operations, XXX shall adopt and follow well-defined and time-tested plans and procedures, to ensure timely management of organizational risks.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |