Governance committee in decision task

OliLue · ‎09-17-2023

Hi all,

i have a problem to understand the tasks of an governance committee. For my understanding the take care of handling procedure of decision making, validation of policy, but not in execute decisions.

Now I have the question of a merge of to companies with different security frameworks and how to handle this.

The correct answer is:

Use of a governance committee.

For my understanding governance make decisions. For me this should be done finally be senior management, after expert analysis. Something in this way.

How is your view?

Best regards

OliLue

dcontesti · ‎09-18-2023

@OliLue

Please post entire question.

d

Early_Adopter · ‎09-18-2023

Governance should flow down from the board and for security and data protection computers need good actually proposals with data to decide sign off on. After the experts/enthusiasts/best fit/stakeholder folk have created this the committee considers it and the output for that goes into your recorded designs for accountability. It’s important everyone has an opinion, but that no opinion is given too much weight.

JayH · ‎10-23-2023

Governance groups contain members of senior management - which is a more fulsome answer.

Answers always take into account the "best" answer. Whereas yours is correct, the best answer is the Governance group.

When a governance group is spun up. TOR's (Terms of Reference) are created outlining their purpose and their scope of work/decisions.

The program sponsor and other key leaders would agree on the TOR.