The high level preparedness required to mitigate both internal and external threats requires a more holistic approach that ensures cultural and behavioral change, as well as improved control and monitoring of operations.
IT security governance binds core elements of cyber defense and risk management—providing organizations with a holistic approach. This paper presents the approaches to help organizations develop effective IT security governance processes.