The Information Security Manager (ISM) is the person who will be responsible for the implementation and maintenance of the Information Security Management System. They ensure all necessary resources are available to the organization.
This is typically the CISO, CTO, or VP of Engineering. We highly recommend appointing someone with decision making authority and system administrative access to help drive SOC 2 and ISO 27001 efforts forward.
Article is closed for comments.