ABSTRACT
Is the security manager’s responsibility corporate, regional, national, or global?
information security’s mission statement must support
the corporation’s business objective. Very often, one can
find a security mission stated something like:
This mission is quite specific to information security
and a specific department. A mission like this is a prime
reason why defining the security manager’s domain is
critical to the success of policy formation.