From the course: Certified Information Security Manager (CISM) Cert Prep (2022): 1 Information Security Governance
Join today to access over 23,200 courses taught by industry experts.
Management review and approval
From the course: Certified Information Security Manager (CISM) Cert Prep (2022): 1 Information Security Governance
Management review and approval
- IT and security managers have some key responsibilities when it comes to operational security controls. Managers serve as a critical check-and-balance in many organizations, and they should routinely review the work of both their own teams and others'. Management reviews play two important roles in the security process. First, they provide an important double-check on the work performed by employees to verify accuracy and completeness. Second, they reduce fraud and malfeasance by creating a culture of oversight. If employees, particularly privileged users, know that someone is checking their work, they'll be far less likely to engage in unscrupulous activity. Privileged actions are the most important tasks requiring management review. System engineers, application administrators, and other trusted employees, often have the ability to override normal security controls and perform actions that would otherwise violate…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.