the misunderstanding It is necessary that the heads of the divisions implementing the main business function of the organization see the economic security service as an assistant, and the results of its activities are actively us for making business decisions not only by the company’s top management, but also by line managers.
The heads of organizations have an even the misunderstanding
Lower understanding of the usefulness c level executive list of the information security (IS) service for business. of the place and role of this service in the structure of the enterprise is that in different organizations it is locat in different places in the organizational and staffing structure: somewhere it is subordinate to the security director, somewhere – to the director of information technology; there are schemes where IS issues are supervis by the production director or even the head of the administrative and economic service. In extremely rare cases, the head of the IS service reports directly to the head of the organization. The lack of a generally accept understanding of what business issues the IS service should resolve leads to a significant underestimation of the status of this department in the eyes of top management.
To some extent, the information security
Specialists themselves are to blame for this state of affairs. Aren’t they the ones who define the organization’s information security as their area of responsibility and proudly declare in the very first internal regulatory act that each employee of the enterprise is personally responsible for the safety of confidential information to which they have access? How many managers really know the difference between the concepts of “information agb directory security” and “information protection”? For the vast majority of non-specialists in the field best practices for digital marketing security of information security, including business owners and enterprise managers, these terms mean the same thing. And if so, then what are the employees of the information security service responsible for, since, according to them, all employees of the enterprise are responsible for information protection?