applying principles for societal security

At a FoF seminar, The MSB today suggested 10 principles for societal security.
I interpreted eight of them for InfoSec Management.
  • earn and maintain trust among stakeholders
  • communication is an indicator of a safer organizational systems environment
  • readiness begins and ends with the individual coworker
  • incident prevention can be made more effective
  • critical services must remain available
  • information security is everybody's business
  • manage dependency on external suppliers
  • a system transcending trust boundaries can only be managed in a concerted effort

No comments: