Simon Burson v podrobn?jším ?lánku rozebírá tyto body:
- Appointing a security officer
- Security reporting
- Develop governance
- Develop a security incident management plan
- Initiate a security programme of work
- Assess the security of all initiatives
- Complete period-based assurance tasks
- Provide security training
- Develop a whistleblower process
- Consider security functionally