Governance and Accountability

who in tel aviv can i blame for all my problems

Governance practices ensure organizations abide by all applicable cybersecurity laws and regulations to protect them from legal liability. Governance oversees:

• regulatory compliance requirements
• contractual obligations
• public disclosure laws
• breach liability
• privacy laws
• intellectual property protection
• licensing agreements

Implementing Governance (Raw Lesson Content)

Follow these guidelines to support effective governance controls:

• Implement a governance structure that best supports the organization's objectives.
• Leverage expertise through committees to support decision-making.
• Establish a comprehensive list of policies, processes, standards, and guidelines.
• Implement change management programs to maintain control and promote transparency.
• Use automation and orchestration tools to improve consistency, reduce response times, and support compliance.

Centralization

sometimes you're just... too big to centralize everything. too massive. that's when you de-centralize everything. does that make sense?

Committees and Boards

we need people to larp around and circle back and re-touch base and take meetings offline and such to make decisions. 

committees are special groups made up of:

• subject matter experts
• stakeholders
• representatives from relevant departments

boards are important because they are made up of:

• high level executive
• external stakeholders
• nobody important