... "an obligation placed on an individual person or organisation by an authority e.g. to ensure that an asset is properly protected i.e. a duty of care" [source: SecAware glossary)
... an integral part of maturity, professionalism and competence
... acting in a socially considerate and adult manner
... a blend of specific and general requirements
... often informal, incompletely specified
... often confused with accountability
... doing what's right and proper
... an inherent part of the job
... commonly misunderstood
... stepping up to the plate
... not having to apologise
... an opportunity to shine
... something one accepts
... a sign of being trusted
... playing by the rules
... something to duck
... self-determination
... doing things right
... a fragile control
... a heavy burden
... a guilty feeling
... an expectation
... not offending
... discretionary
... an obligation
... more work!
... severable
... shirkable
... deniable
... serious
... intent
... will
...
Prompted? Provoked? Puzzled? Good! I'm hoping to exercise a few braincells.
Other infosec-related bloggings along similar lines:
- Accountability is ...
- Assurance is ...
- Audit is ...
- Authorisation is ...
- Control is ...
- Cyber is ...
- Fragility is ...
- Governance is ...
- Impact is ...
- Information is ...
- ISO27k is ...
- Oversight is ...
- Resilience is ...
- Risk is ...
- Security is ...
- System is ...
- Threat is ...
- Trust is ...
- Vulnerability is ...
No comments:
Post a Comment
The floor is yours ...