Translating a cyber security strategy and vision into action requires the buy-in and support of the wider organisation. This can be achieved by establishing a committee containing key stakeholders from across the business. The main objective of the steering committee is to achieve consensus and align cyber security priorities with the organisation’s objectives. Steering committees are most effective when they contain representatives who can make decisions on resource allocation, prioritisation, and direct cyber security activities.
Effective risk management is a core component of governance and must be embedded within the organisation. A framework is needed to effectively identify, analyse, evaluate, and manage cyber security risks. The framework supports consistent decision-making and prioritisation within an organisation, maximising the benefit of investment in cyber security.
Achieving effective cyber security governance requires defining and establishing the organisation’s cyber security roles and responsibilities. After they are created, consider at what level in the organisation they need to be performed.
In smaller organisations, most cyber security functions may fall to a single person. In such cases, it is even more important for senior leaders to ensure cyber security duties are realistic, clearly understood, and well communicated. Everyone in the organisation should understand their role in supporting effective cyber security.
Managing Data Centre Operations
In recent years, data centre infrastructure has become significantly more reliable and management practices have improved, so it would be fair to expect that the number of reported downtime incidents is decreasing. But this is not the case.
According to a 2018 survey by Uptime Institute, 31% of respondents experienced a downtime incident or severe degradation in the last year and 48% reported at least one outage at their site or at a service provider in the last three years.