A formal approach to security management contributes directly to business capability, reputation and operational/commercial viability of the organisation. To achieve this, you will need to align security governance, processes and controls to meet the organisation’s objectives.
Providence supports the boards, executives and risk-subcommittees of organisations to ensure they operate to best practice governance by focusing on three key areas:
Our approach can be summarised by the following diagram:
Firstly, boards and risk sub-committees must ensure that staff are performing their security risk management activity and assure themselves at some level of detail that it is adequate.
The board must then decide what threats affect the organisation and what must be invested in taking advantage of opportunities presented in the market.
The board set the organisational risk appetite, showing the security risk management is an organisational priority and that endeavors to protect the organisation are adequately resourced.
In the organisation, through executive, management and staff various functions are then performed such as risk analysis, the performance of risk-based SWOT analysis, actions to be undertaken and then feedback (via reporting) information to inform the board.
Providence support organisations to:
Adash is Providence’s CEO and is responsible to the Providence Board and Providence’s clients for ensuring the timely delivery of outcomes through advice, guidance and mentoring to Providence’s staff.