CISM - Information Security Governance - Section 1.1
Understand organisational culture and its influence on information security governance.
Recognise how an organisation's shared values, norms, and leadership behaviours shape the willingness of staff to comply with and champion information security. Distinguish between a culture where security is enforced from the top and one where it is embedded through demonstrated executive commitment and tone at the top.
Organisational cultureSecurity cultureTone at the top
More in this domain
Back to all Information Security Governance objectives, or the CISM cert hub.
Examworthy is not affiliated with or endorsed by ISACA. Original, blueprint-aligned practice material only.