Status: Live
The organization will continually strive to establish and maintain close working relationships with key stakeholders, business unit leaders, and executive management. [UCF ID 00779]
Supporting and supported controls
This control directly supports:
- • Maintain the IT staff structure in line with strategic goals [UCF Control ID 00764]
There are no supporting controls.
Authority documents complied with:
FFIEC IT Examination Handbook – Management, Pg 6; CobiT 4.1, PO4.15; The Standard of Good Practice for Information Security, SM2.2.5(c); OGC ITIL: Security Management, § 3.5; Archer Control Table, ATCS-006, ATCS-007, ATCS-009, ATCS-788
Banking and Finance Guidance
The Chief Information Officer (CIO) should support the activities of managers in the other business areas. [Pg 6, FFIEC IT Examination Handbook – Management]
ITIL Guidance
[§ 3.5, OGC ITIL: Security Management]
General Guidance
The organization should establish and maintain an optimal coordination, communication and liaison structure between the IT function and various other interests inside and outside the IT function, such as the board, executives, business units, individual users, suppliers, security officers, risk managers, the corporate compliance group, outsourcers and offsite management. [PO4.15, CobiT 4.1]
The information security function should maintain contacts with appropriate personnel from outside the organization, such as security experts, law enforcement agencies, and government agencies. [SM2.2.5(c), The Standard of Good Practice for Information Security]
Copyright 2005-2009 Unified Compliance Framework™. All rights reserved.