The IT security blame game
Who carries the can and who should?
Workshop Poll The word “governance” is one that tends to make most peoples’ eyes glaze over. But whether we are talking about running a corporation, managing an IT department or dealing with IT security, there has to be a mechanism in place for making sure that the right things are taken care of in an acceptable manner. And cutting through all the theory, that’s basically what governance boils down to. A big part of this is being clear on who is responsible for what, and who carries the can when it all goes wrong. And this is the subject of this week’s poll. So if you have a few minutes to spare get clicking below:
READER POLL: THE IT SECURITY BLAME GAME
I did not fill the poll, but I am surprised this is not a choice under "type of business"...
Missing critical data
Where is the option for senior management? Since there is no such option I cannot participate in your poll. Your might need to review your pollster's CISSP credentials a bit more closely.
Just to be clear "The Business" is not the senior management. If all decisions were left purely to business there would be no security and we would be drowning in popups and advertisements.