Home Topics

Security Governance

Security Governance

Changed economic situations mean that companies are increasingly confronted with new risks. In this context, the security function occupies a fundamental place in corporate governance. Thus, an integrated approach to security governance becomes essential.

Security governance: the essentials in brief

  • Security governance governs the management, monitoring and review of information security in an organization. 
  • It is intended to avoid fragmentation of security activities within the company and purely operational security management.
  • There are a number of legal principles and best practices that security professionals apply when developing systemic security management.

Contact us

What is part of security governance?

Security governance involves monitoring IT security policies, processes and technologies. The aim is to ensure that sensitive data is protected and used lawfully. Furthermore, security governance serves to identify and minimize risks and ensure continuous monitoring and review.

Legislative Foundations Security Governance

There are several regulatory requirements that are relevant to security governance, including:

  • ISO Standard 22'340 entitled "Safety and Resilience - Security - Guidelines for an architecture and framework for preventive corporate security"
  • EKAS Guideline 6508 on the involvement of occupational physicians and other occupational safety specialists 
  • Fire Safety Guidelines (BSR 12-15) on organizational fire prevention

What benefits do I gain from safety governance?

Your benefits from our safety governance analyses, situation assessments and recommendations may include:

  • Determining the compliance of your security management system with regulatory requirements 
  • Evaluating the relevance of the organization of your security resources as well as the position of security in the company 
  • Evaluating whether or not your security governance promotes the achievement of corporate goals
  • Improving your security management and its effectiveness 

How does SBIS support?

SBIS has proven experts in corporate security management, the establishment of governance structures and the development of security governance in the broadest sense for companies from various industries. 

We regularly conduct external and independent audits, commonly referred to as "Third Party Audits" (according to ISO 9'000). Companies looking to revise their "Art of Governance" are our target audience in this regard.

Our professional and documented assessment covers a wide range of questions, including for example: 

  • Where should security be placed in the company's organization?
  • What proximity should security management have to management?
  • What are the obvious tasks and missions of security in companies?
  • Does the company and its organization meet the legal requirements related to security?
  • What distributions of tasks and functions should be made within security governance?
  • Does the infrastructure provided enable the company to control its risks?
  • Does the organizational security architecture need to be supplemented to increase efficiency?
  • Are internal communication channels regarding security governance adequate?
  • Does management have a security strategy that addresses its own risks?

Make a no-obligation inquiry on security governance

now