The purpose of the Assigned Security Responsibility Policy is:
- Assign a Security Officer and identify the responsibilities of this position to include but not limited to:
- Manage and supervise the execution and use of security measures to protect data.
- Manage and supervise personnel in relation to the protection of this data.
- Implement, test, and maintain physical safeguard.
Procedure: In order to assess and prioritize tasks regarding this policy we have:
- Assign an individual for this position based on the requirements delineated in the Position Description (Position Description copy is included in the Chapter designated as Forms).
- Evaluate, at least on an annual basis, effectiveness of security manager based on the following tasks:
- Implementation and development of security policies and procedures.
- Staff training and feedback.
- Gap analysis and internal security audits.
- Violations of security policies.
- Professional development.
- Risk management.
- Initiative and ability to handle stress.
