Save or Share this Report

For Security & Risk Professionals

Structure Your Security Practice For Success

March 2, 2017

Primary author headshot


Why Read This Report

CISOs are constantly evaluating the structure and make-up of their organization to make sure it aligns with business and risk management needs. While org structure can affect how well the security program operates, these concerns are often distracting from more pressing issues and objectives. This report examines key organizational challenges for security leaders, explains a practical approach for establishing roles and responsibilities, and offers three common models of security structure to use as a starting point. This is an update of a previously published report; Forrester reviews and updates it periodically for continued relevance and accuracy.

Get Access

Already a Client?

Log in to read this document.

Become a Forrester Client

Customers are the new market-makers, reshaping industries and changing how businesses compete and win. Success depends on how well and how fast you respond. Forrester Research gives you insights and frameworks aligned to your role to shorten the time between a great idea and a great outcome, helping your teams win in the age of the customer. Contact us to learn more.

Purchase Report

This report is available for individual purchase ($2495 USD).


Table of Contents

  • Organizational Concerns Distract From Real Security Work
  • RASCI Roles Determine Your Success More Than Org Structure Does
  • Assign Participation Around Three Common Models
  • Recommendations

  • Strive For Visibility, Command, Transparency, And Support
  • Related Research Documents