Back IT Security and Risk management

Tools, methods, and certifications

What he/she does IT Security and Risk management

ITSRM evaluates possible threats, guards the necessary information secrets, and protects the information against damage.

Description of role and its outputs

IT Security and Risk management analyzes security risks and ensures the desired information security.

Job description

Defines security policies in a company. Analyzes security risks and designs strategy for their elimination. Plans, implements, test, monitors, and improves the safety of information and spporting technologies. Monitors and watches security incidents. Together with the Security Manager deals with IT secruity on the organizational level - procedural, technical as well as physical directives. Some roles only deal with technical aspects, e.g. network security.

Work outputs

Security policies, remedial measures, security reports

KPI's

Reaching the desired information security level

Who does he work with

Everyone in the organization