From an information security perspective as well as that of an IT perspective, there are a bevy definitions in the industry today that have multiple meanings and seem to ebb and flow with the tides. Couple this with the varied organizational structures, reporting requirements, siloed teams, charters, processes and overall roles and responsibilities within the company and I start to get a bit confused. Lets take a look at what we have to deal with: The Security, Compliance, Recoverability, Availability Management team is held responsible for the whole effort but has nary a stitch of authority to modify inappropriate behaviors.”]
Source: https://www.csoonline.com/article/2136273/scram.html