Discuss procurement from an organizational and security perspective.

What will be an ideal response?

Procurement is a major organizational function, and so the security activities that are embedded and maintained by the security specialist have to be formally planned as well as executed. From an operational standpoint, the procurement specialist devises and then assists in detailed security analyses. The procurement specialist also routinely reviews procurement procedures to ensure that all necessary security requirements are included and followed correctly.

The procurement specialist role is more oriented toward security than it is toward purchasing. Therefore, it is important that the lines of communication between the procurement specialist and the people responsible for general security management are open and effective. Because purchasing affects the entire organization, effective communication is particularly important between this role and the people responsible for identifying and analyzing overall risk. The lines of communication between procurement and risk management have to be formally defined in any security plan.