Our Blog

Insights

RESULTS FOR: Data Security

Lines of Authority: The Critical Need for Role Clarity in Information Security Compliance

July 19, 2023 | Compliance Risk + Compliance

Clearly defined roles and responsibilities are an essential component of an effective compliance program. Failure to adequately assign responsibility can lead to gaps in compliance coverage and a lack of accountability.

In a recent NAVEX survey 76% of the respondents indicated that the compliance function in their infosec compliance group is not an independent Compliance department reporting to the chief executive officer or board of directors (for instance, it reports up through IT/data security/data privacy, Legal or Human Resources).

When … Read More

  • 1