Establish relationships with key stakeholders, business functions, and leadership outside the IT group

Status: Live

The organization will continually strive to establish and maintain close working relationships with key stakeholders, business unit leaders, and executive management. [UCF ID 00779]

Supporting and supported controls

This control directly supports:

There are no supporting controls.

Authority documents complied with:

FFIEC IT Examination Handbook – Management, Pg 6; CobiT 4.1, PO4.15; The Standard of Good Practice for Information Security, SM2.2.5(c); OGC ITIL: Security Management, § 3.5; Archer Control Table, ATCS-006, ATCS-007, ATCS-009, ATCS-788

Banking and Finance Guidance

The Chief Information Officer (CIO) should support the activities of managers in the other business areas. [Pg 6, FFIEC IT Examination Handbook – Management]

ITIL Guidance

[§ 3.5, OGC ITIL: Security Management]

General Guidance

The organization should establish and maintain an optimal coordination, communication and liaison structure between the IT function and various other interests inside and outside the IT function, such as the board, executives, business units, individual users, suppliers, security officers, risk managers, the corporate compliance group, outsourcers and offsite management. [PO4.15, CobiT 4.1]

The information security function should maintain contacts with appropriate personnel from outside the organization, such as security experts, law enforcement agencies, and government agencies. [SM2.2.5(c), The Standard of Good Practice for Information Security]


Copyright 2005-2009 Unified Compliance Framework™. All rights reserved.


Site and content © Copyright 2003-2009 Network Frontiers, LLC. All rights reserved.