Updated on 2025-05-22 GMT+08:00

SEC01-01 Establishing a Security Management Team

Specify the key roles responsible for workload security, compliance, and privacy protection in the cloud environment.

  • Risk level

    High

  • Key strategies
    • Clarify responsibilities and roles: Determine the responsibilities and roles of team members, including the roles in security architecture design, security test, and security operation. Clearly define the responsibilities and tasks of each role.
    • Cross-functional team: Set up a cross-functional security management team that consists of professionals from different domains, such as security operation, security architecture, and compliance, to ensure comprehensive security management.
    • Develop security policies and processes: Develop detailed security policies and processes, and specify security management standards and regulations. Team members should comply with these policies and processes to ensure consistency and effectiveness of security management.
    • Establish an emergency response plan: Develop and validate an emergency response plan to respond to security incidents and emergencies. The team should have a clear understanding of how to deal with security threats and handle security incidents.