4 Part 4: V-Modell Reference Roles
4.2 Roles
4.2.26 Security Manager
Description
The Security Manager is responsible for the compliance with and the implementation of »Security aspects in IT projects and projects with IT elements. Within the scope of the project, he is mainly tasked with the preparation and updating of the project-related security concept. In addition, the Security Manager is basically responsible for monitoring the implementation of the security concept.
Tasks and Responsibilities
- Preparing the project-related security concept,
- reviewing the acceptance of security measures in accordance with the information security concept,
- advising the Project Manager in technical questions regarding the project's security.
Skill profile
- Capability to recognize weak points, hazards and the resulting risks,
- knowledge of the application and use of the system,
- knowledge of the methods and tools used for the Hazard and Risk Analysis - Information Security,
- knowledge of the applicable information security standards/regulations/directives,
- assertiveness.
Role Allocation
The Security Manager is only required in projects which must take into account information security requirements. Security aspects shall always be considered in IT projects and projects with IT elements. In a project, the roles of Security Manager and »Safety Manager can be assumed by one person.
Responsible for
Participating in
Requirements Specification, Requirements Specification Overall Project, Project Manual, Overall System Specification, Data Protection Concept