Professional Documents
Culture Documents
4.6%
Executive
Management
IT Organization
18.2%
I N F O R M AT I O N S Y S T E M S C O N T RO L J O U R NA L , VO L U M E 4 , 2 0 0 6
Information Security
Organization
Information Security
Consulting
37.2%
Other
Percent of Population
45
60
5
4.5
4
3.5
3
2.5
2
1.5
1
0.5
46
80
40
20
0
Overall
Executives
Security
IT Management
Stratetic Alignment
Risk Management
Value Delivery
Resource
Management
Performance
Management
Regulatory
Compliance
Percent Selected
Define Roles
Develop Policy
Develop Standards
Align Strategy
Develop Metics
Develop ROI Methods
Develop Budget
Justification
Augment Staff
Transfer Security
Responsibility
Consolidate Security
Converge Security
Document Controls
Formal Architecture
I N F O R M AT I O N S Y S T E M S C O N T RO L J O U R NA L , VO L U M E 4 , 2 0 0 6
4 Low
1 High
Governance
No Governance
Program Components
Executive Support
Security Manager
Relationships
Information Protection
I N F O R M AT I O N S Y S T E M S C O N T RO L J O U R NA L , VO L U M E 4 , 2 0 0 6
47
48
I N F O R M AT I O N S Y S T E M S C O N T RO L J O U R NA L , VO L U M E 4 , 2 0 0 6