Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.


Each of the collaborating infrastructures has:


"A person or team mandated to represent the interests of security for the infrastructure."


To ensure that implementing infrastructure security policy is clearly defined as an individual or group core responsibility, giving it appropriate priority and authority within the organisation for necessary actions to be carried out. To prevent confusion and delay in the event of a reported incident.


Designate an individual, or team, with responsibility for the development and oversight of activities required to implement security policy, including those to address and mitigate security risks. Provide, or delegate to, a clear point of contact within the infrastructure for all matters related to security, including incident handling.


  • The person or team is appointed with clear responsibility and authority.
  • Contact details for the above are published internally and externally.

OS2 - Risk Management Process