To list all possible security controls

To demonstrate the implementation of security controls

To manage employee performance

To provide financial reports

A list of company assets

A list of selected security controls and their rationale

A list of all employees

A list of financial transactions

Risk Assessment

Information Security Policies

Incident Management

Access Control

SWOT Analysis

PESTLE Analysis

CMMI Maturity Model

Balanced Scorecard

To provide further explanation of control implementation

To list all applicable laws

To outline employee responsibilities

To summarize financial data

Optimized Phase

Managed Stage

Limited Stage

Initial Stage

Increased profits

Enhanced employee satisfaction

Improved customer relations

Failure in audit