The ISO is responsible for the implementation, maintenance, and management of the security controls for the Information Resource. Information Security Officer (ISO) - an individual designated by an Owner to be responsible for the overall security of an Information Resource. An Information Security Program should be developed by the owner or manager of the Information Resource. Information Security Program - the overall set of security controls which govern the protection, access, use, management, and disposition of Information Resources. An SAO must have the knowledge, skills, and training to provide advice and guidance to the owner of the Information Resource regarding the development, implementation, or modification of the security controls for the Information Resource. The SAO is responsible for the implementation, maintenance, and management of security controls for the Information Resource in accordance with the specified security policies, including but not limited to information access and information dissemination controls. The SAO should be qualified by education, training, and experience to possess the knowledge, skills, and judgment necessary to perform his/her tasks effectively and efficiently. The SAO is responsible for the implementation, maintenance, and management of the security controls for the Information Resource. Security Administrative Officer (SAO) - an individual designated by an Owner to be responsible for the overall security of an Information Resource.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |