collect, process, and use information in order to complete cybersecurity objectives

interact with their bosses, employees, co-workers, other organizational stakeholders, and basically anyone involved with or affected by the cybersecurity function

make choices by selecting from among alternatives and they resolve conflicts, dilemmas, or challenges related to cybersecurity

unilaterally direct all employee compter uses in the organization

collect, process, and use information in order to complete cybersecurity objectives

interact with their bosses, employees, co-workers, other organizational stakeholders, and basically anyone involved with or affected by the cybersecurity function

make choices by selecting from among alternatives and they resolve conflicts, dilemmas, or challenges related to cybersecurity

unilaterally direct all employee compter uses in the organization

the activity that focuses on the structuring of resources

the administration of employees, making sure you have the right number of people, as well as the right skills within your staff to do the work

communicating your plans to your employees, and making sure they are working to help achieve the department’s goals

making sure that the department and it’s employees are making progress towards the objectives that you specified during planning and making sure any problems that come up are solved

Network Usage Policies (NUPs)

Enterprise policy (EISP or ECSP)

Issue-Specific Security Policies (ISSPs)

System-Specific Policies (SysSPs)

Human Resources

Information Technology

Legal

Internal Audit

more

less

same amount

those able to handle planning, policy and risk management

the engineers, programmers and other technical specialists that create security solutions

those that administer or operate cybersecurity

those that are responsible for day-to-day monitoring and operations