The University of SydneyPage 66InstitutionalisingInformation Security–Organisationalstructure–Policy and Procedural framework–Linking access rights to the hierarchical level–For efficiency and effectiveness purposes
–The reality is more complex than formal or the technical aspects of the system --ethics and trust–Maintaining consistency in communication–Ensuring proper interpretation of informationCISO