Security Governance

Last updated on May 25, 2020

This control area ensures that security is considered on a case by case basis for every project. Security reviews should be performed before any business case is approved and capital funding is allocated for the implementation or execution of the project. Additionally, security should be considered in every phase of a Software Development Life Cycle (SDLC).

Expert Opinion - Security Governance

Control Objective

Security review to be performed on each business case prior to allocation of capital and implementation of systems (security by design) with business signoff
Applications and programming interfaces are developed according to industry standards

Resources

Security Standard For Application and Web Development and Deployment

Did you find what you were looking for?

The B.C. Public Service acknowledges the territories of First Nations around B.C. and is grateful to carry out our work on these lands. We acknowledge the rights, interests, priorities, and concerns of all Indigenous Peoples - First Nations, Métis, and Inuit - respecting and acknowledging their distinct cultures, histories, rights, laws, and governments.

More topics

Security Governance

Expert Opinion - Security Governance

Control Objective

Resources