Identify and Align Security-Related Roles

Table 2-2 Responsible, Accountable, Consulted, Informed (RACI) Matrix

Management Practice	Board of Directors	Corporate Executives	Chief Digital Officer	LOB executives	Chief Risk Officer	CIO	CISO	Human Resources (HR)	Compliance and Audit	Security Ops Manager	EA/ARB	CTO/Dev	IT Operations	Service Manager	Security Incident Response	Business Continuity
Maximize IT business value	A	R	R	R	I	R	I		C		C	I	I	I
Ensure risks are managed	A	R	I	R	R	R	C	C	C	I	C	I	I	I	I	I
Manage security program		C		C	C	R	A		C	R	I	I	I	I	C	C
Manage security operations				I	I	C	A		C	R	I	C	R	R	R	I