Information security governance is like having someone make sure that everyone in your family is following the special rules you have set up to keep your home safe. Information security governance is when someone is responsible for making sure that everyone in a company is following the special rules set up to keep their information and data safe and secure. This includes making sure people are not sharing passwords, controlling who has access to important information, and making sure that all systems are up to date and secure. Often, this job will fall to someone like the Chief Information Security Officer (CISO) who will make sure all of the rules are followed and that everyone is doing their best to keep the information and data safe.