■ Overview
The Assured checklist questions cover many areas: technical, organizational, legal, and operational. So, we suggest the answers come from people or departments who really understand these areas and can explain each point thoroughly.
Feel free to use our memo function for internal discussions and the assign feature to get the right people involved. While the specific departments might differ depending on your company's setup, the Information Security Governance department often leads the overall compilation.
Memo Function: https://support.assured.jp/hc/ja/articles/43396670242969
Assigning Responsible Persons: https://support.assured.jp/hc/ja/articles/43396600231449
■ Departments That Can Help with Responses
・Depending on the question, various departments often contribute answers. Here are some examples:
・Overall Compilation: Information Security Department (e.g., CISO Office)
・System Configuration, Access Control, Development Structure: Product Development Department, Engineering Department
・Security Policy, Training: Information Security Department (e.g., CISO Office)
・Personal Information Protection, External Outsourcing: Legal Department, Compliance Department
・SLA, Notifications: Customer Support Department
■ Important Note
Company size and structure can vary, and roles might be combined. Please choose your respondents based on what makes sense for your organization.