Gartner Research


Published: 02 August 2023



Included in Full Research


  • インフラストラクチャ/オペレーション (I&O) チームとセキュリティ・チームは、ビジネス・リスクの構成要素や、リスクの相対的な重要性について異なる認識を持っている場合が多い。こうした食い違いは優先順位や予算に関する対立につながり、敵対関係を生じさせることから、組織のインフラストラクチャが大きな代償を伴うセキュリティ上の脅威にさらされる恐れがある。

  • I&Oチームとセキュリティ・チームが役割と責任を明確に定義していない場合は曖昧性が発生するため、実装と脆弱性修復に関するギャップが生じ、組織は長期的なセキュリティ・リスクにさらされる。

  • I&Oチームとセキュリティ・チーム間のコラボレーションは、各チームが独自のサイロで活動しているため、場当たり的なものとなる。


I&Oリーダーは、セキュリティ/リスク・マネジメント (SRM) のリーダーと連携して、以下を行う。

  • リスク・マネジメント・ガイドラインを作成し、I&Oチームとセキュリティ・チームが連携すべきプロジェクト (技術的負債の削減など) を選定することで、ビジネス・リスクに関する共通の定義と、共通の目標を設定する。

  • コラボレーティブなプロジェクトのRACI (Responsible [実行責任を担う]、Accountable [説明責任を担う]、Consulted [相談を受ける]、Informed [報告を受ける]) チャートを作成し、チーム間の実行責任と説明責任を明確に区分する。

  • チーム間で公式および非公式のミーティングを設定し、運用とアーキテクチャのベスト・プラクティスを確立することで、I&Oチームとセキュリティ・チームのコラボレーションを強化する。

To view the entire document, log in or purchase


Takuma Yamamoto

Access Research

Already a Gartner client?

Just stopping by?

To view this research and much more, become a client.

Speak with a Gartner specialist to learn how you can access peer and practitioner research backed by proprietary data, insights, advice and tools to help you achieve stronger performance.

By clicking the "Continue" button, you are agreeing to the Gartner Terms of Use and Privacy Policy.

Gartner research: Trusted insight for executives and their teams

What is Gartner research?

Gartner research, which includes in-depth proprietary studies, peer and industry best practices, trend analysis and quantitative modeling, enables us to offer innovative approaches that can help you drive stronger, more sustainable business performance.

Gartner research is unique, thanks to:

Independence and objectivity

Our independence as a research firm enables our experts to provide unbiased advice you can trust.

Actionable insights

Not only is Gartner research unbiased, it also contains key take-aways and recommendations for impactful next steps.

Proprietary methodologies

Our research practices and procedures distill large volumes of data into clear, precise recommendations.

Gartner research is just one of our many offerings.

We provide actionable, objective insight to help organizations make smarter, faster decisions to stay ahead of disruption and accelerate growth.

Tap into our experts

We offer one-on-one guidance tailored to your mission-critical priorities.

Pick the right tools and providers

We work with you to select the best-fit providers and tools, so you avoid the costly repercussions of a poor decision.

Create a network

Connect directly with peers to discuss common issues and initiatives and accelerate, validate and solidify your strategy.

Experience Information Technology conferences

Join your peers for the unveiling of the latest insights at Gartner conferences.

©2022 Gartner, Inc. and/or its affiliates. All rights reserved. Gartner is a registered trademark of Gartner, Inc. and its affiliates. This publication may not be reproduced or distributed in any form without Gartner’s prior written permission. It consists of the opinions of Gartner’s research organization, which should not be construed as statements of fact. While the information contained in this publication has been obtained from sources believed to be reliable, Gartner disclaims all warranties as to the accuracy, completeness or adequacy of such information. Although Gartner research may address legal and financial issues, Gartner does not provide legal or investment advice and its research should not be construed or used as such. Your access and use of this publication are governed by Gartner’s Usage Policy. Gartner prides itself on its reputation for independence and objectivity. Its research is produced independently by its research organization without input or influence from any third party. For further information, see Guiding Principles on Independence and Objectivity.