Chief Security Officer

Compliance business concept. Businessman

Enterprise Governance for Information & related Technology


  • Keep the impact and occurrence of information security incidents within the enterprise’s risk appetite levels.

SGM Value Proposition:

  • Security of information, processing infrastructure and applications, and privacy.

Enterprise architect pressing a tile in

Business Model and Architecture Management


  • Ensuring that the information, data, and systems of the organization are available to only those that have permission, and protecting the information, data, and systems from unauthorized tampering.

SGM Value Propositions:

  • Detailed understanding of the product lifecycle during the development of Business Architecture to ensure rigour in the design of controls, processes, and procedures.

  • Understanding the lifecycles of key entities within the enterprise.

  • Depict which actor (person, organization, or system) can access which enterprise data

  • Demonstrate compliance with data privacy laws and other applicable regulations (HIPAA, SOX, etc).

  • Understanding Actor-to-Role relationships is a key supporting tool in the definition of training needs, user security settings, and organizational change management.

  • Establishing authorization, security, and access to these technology components

  • Enable application/technology auditing and prove compliance with enterprise technology standards.

  • Establish traceability and changing application end-point address while moving application either from a shared environment to a dedicated environment or vice versa.

  • Describes the means of communication — the method of sending and receiving information — between these assets in the Technology Architecture; insofar as the selection of package solutions in the preceding architectures put specific requirements on the communications between the applications.

Growth value, increase value, value adde

Management of Value


  • Business service continuity and availability.

SGM Value Proposition:

  • Security of information, processing infrastructure and applications, and privacy.

 ITSM. IT Service Management. Concept fo

IT Service Management


  • Ensure that the confidentiality,  integrity and availability of the organization’s information, data and IT services always match the agreed security needs of the business.

SGM Value Propositions:

  • Determine the current and future security needs  of the business;

  • Produce, promote and enforce information security policies;

  • Assess the information-related risks;

  • Implement a set of security controls and measures;

  • Provide advice and guidance on information security-related issues;

  • Resolve information security-related incidents and problems;

  • Perform security audits and tests;

  • Maintain and review the information security policies, controls, and measures;

  • Identify and instigate cost-justifiable improvement of information security.