Step 1: Governance & Outreach
Objective: To understand whether the organization has a clear vision and solid foundations
Upcoming questions in this step:
1.Clearly defined budget for IT and cybersecurity
2.Identifying data that is most sensitive and to be protected as a priority
3.Recognition of common cyber threats (phishing, etc.)
4.Classification of data by sensitivity level