Governance is the methodologies and processes that individuals, business units and partners use to manage their shared initiatives. Risk governance is an enabling mechanism for continuous risk assessments visualized through a detailed monitoring and reporting mechanism in support of corporate risk mitigation controls based on anticipated events to ensure corporate objectives are met. The scope of risk governance is not limited to risk alone, however it extends to the justification of operational activities that give rise to the risks.

It includes processes and authorities empowered to enforce compliance of predefined regulations.

It needs to provides a 360 degree view on corporate exposure.

Infraguard

Department of Homeland Security

CERT

SANS

Mitre CVE