Join us at the Rocky Mountain Hackfest, Live Online!! Virtual summit and courses take place June 4-13.

Reading Room

Subscribe to SANS Newsletters

Join the SANS Community to receive the latest curated cyber security news, vulnerabilities and mitigations, training opportunities, and our webcast schedule.


Featuring 1 Paper as of May 15, 2020

  • Corporate Information Governance with Business Wisdom by David Alexander Cruz Urena - May 4, 2020 

    Whether a secret ingredient used for a lemonade stand across the street or the business strategies of a Fortune 50 corporation on Wall Street, organizations that collect, process, or transmit any data have the legal and moral responsibility to govern it. Governing information goes beyond technical capabilities. Further, it is unwise to rely on a department to define, organize, present, and protect information. With the explosion of information into every business activity, information governance is a practice that businesses must exercise. This paper provides actionable and comprehensive strategies to develop effective corporate information governance. Three principles are addressed: governance of accountability, clarity of purpose, and clarity of collaboration.

Most of the computer security white papers in the Reading Room have been written by students seeking GIAC certification to fulfill part of their certification requirements and are provided by SANS as a resource to benefit the security community at large. SANS attempts to ensure the accuracy of information, but papers are published "as is". Errors or inconsistencies may exist or may be introduced over time as material becomes dated. If you suspect a serious error, please contact

All papers are copyrighted. No re-posting or distribution of papers is permitted.

STI Graduate Student Research - This paper was created by a SANS Technology Institute student as part of the graduate program curriculum.