Security of information and communications technology (ICT) organizations is a critical topic due to our society’s reliance on digital information. The problem is that it is hard to reliably manage something we can’t see. This session will present a unified approach to secure ICT management. Attendees will better understand the importance and function of a standard framework of organizational practices in building a secure management process for ICT work. Participants will be shown specific case studies to illustrate how this tailoring is done in the practical universe.