All organisations have to appoint a SIRO (Senior Information Risk Owner). This role is often given to a senior executive within the organisation.
Here at The Willows we have chosen set up a SIRO board. The SIRO board’s role is to ensure information assets and risks within the school are managed as a business process rather than as a technical issue.
All members of the SIRO board have other related roles within the school which help them to recognise and understand the wider risk implications and practical control mechanisms available within the schools infrastructure.
The SIRO board is responsible for advising the schools governing body and senior management team of information risks and threats which may affect the schools objectives.