The global skills and competency framework for the digital world

SFIA View: Cybersecurity governance, risk and compliance

Cybersecurity governance, risk and compliance

Governance GOVN

Defining and operating a framework for making decisions, managing stakeholder relationships, and identifying legitimate authority.

Risk management BURM

Planning and implementing organisation-wide processes and procedures for the management of risk to the success or integrity of the enterprise.

Audit AUDT

Delivering independent, risk-based assessments of the effectiveness of processes, the controls, and the compliance environment of an organisation.

Personal data protection PEDP

Implementing and operating a framework of controls and management strategies to promote compliance with personal data legislation.

Information management IRMG

Planning, implementing and controlling the full life cycle management of digitally organised information and records.

Information assurance INAS

Protecting against and managing risks related to the use, storage and transmission of data and information systems.

Quality management QUMG

Defining and operating a management framework of processes and working practices to deliver the organisation's quality objectives.

Measurement MEAS

Developing and operating a measurement capability to support agreed organisational information needs.