ARCHIVE
ID Number: G00136653



This research is provided for historical perspective;
portions of this document may not reflect current conditions.





Role Definition and Organizational Structure: Security Officer
10 January 2006
 
Tom Scholtz  

The effectiveness of information security practices depends to a large degree on the way that security responsibilities are organized. While best practices are important, organizational realities (cultural and political) must be taken into account when structuring security teams.




Price: US$795.00

Pages: 11






Browse Topics


Other Options







Contact Gartner





Purchasing this document is fast, easy and secure, but you must be registered with gartner.com so we can track your order. Please select your status from these three choices:
Registration is required to purchase this document.
Or, you can register for gartner.com only.
 You or your organization may already own this document. Register now to find out. Your Gartner Membership Administrator can supply the needed License Key(s).
You will not lose your document during registration.
Sign in here:
Username:

Password:
Forgot your username
or password?







For more information about purchasing this or other documents, contact Gartner at one of the telephone numbers below:
North America:    +1 203-316-3010 7:30 am - 8:00 pm Stamford, CT
Europe:    +44 1784 267770 9:00 am - 5:00 pm London
Asia/Pacific:    +65 6879 2785 9:00 am - 6:00 pm Singapore
Japan:    +81 3 3481 3552 9:00 am - 5:30 pm Tokyo

Table of Contents


    
 Analysis

1.0
    
 What Are Organizations Currently Doing?
2.0
    
 The Basics: Nonnegotiable Roles and Associated Responsibilities
3.0
    
 So What's in a Title, Then?
4.0
    
 The Reporting Structure in a Perfect World
5.0
    
 The Pros and Cons of Different Reporting Structures
6.0
    
 Other Factors That Influence Organization Design
7.0
    
 A Model for Decentralized/Federated Organizations
8.0
    
 Some Contrary Strategies

    
 Recommended Reading


List of Tables


Table 1.  
 Security Management Responsibilities, Titles and Reporting Lines
 

Table 2.  
 Advantages and Disadvantages of Reporting Lines
 

List of Figures


Figure 1. 
 Security Roles
 

Figure 2. 
 Preferred Reporting Structure
 

Figure 3. 
 Management Structures and Forums for Decentralized Organizations
 



Browse Topics:
 
Security Management
IT Organizational Structure
IT Workforce Roles and Responsibilities
Security and Risk Management Roles




© 2006 Gartner, Inc. and/or its Affiliates. All Rights Reserved. Reproduction and distribution of this publication in any form without prior written permission is forbidden. The information contained herein has been obtained from sources believed to be reliable. Gartner disclaims all warranties as to the accuracy, completeness or adequacy of such information. Although Gartner's research may discuss legal issues related to the information technology business, Gartner does not provide legal advice or services and its research should not be construed or used as such. Gartner shall have no liability for errors, omissions or inadequacies in the information contained herein or for interpretations thereof. The opinions expressed herein are subject to change without notice.




Resource Id: 488013