Is the IT role and the InfoSec role good to be combined into a single responsibility? Solution In an organization IT responsibilities and Information Security responsibility are two of the most important roles in todays connected organizations. IT is mainly responsible for setting up the software and hardware systems of an organization and then maintaining the infrastrcture installed. They are involved in choosing the hardware configurations which can adequately and most economically fulfil the service requirements without any hiccups. On top of the hardware requirements the IT also plays role in selecting the software which will help in carrying out all the work. Once these systems are setup they take care of the the routine tasks like troubleshooting updating the IT systems as and when required etc. Information security on the other hand is the role which involves keeping the integrity of the information system intact, install measures which will prevent data theft, manipulation or any sort of data compromise. Data compromise can lead to theft of sensitive information which could land an organization into legal, financial trouble. This could lead to loss of brand equity and long term loss of business as well. So while designing the IT systems for an organization it is very important to keep a view of the information security so that compatible systems can be installed. If IT and infosec roles are different the requirements for each might be different and later on deviations can arise leading to loss of time and money. Thus it is best to combine the two roles into one to save time and money and have better system integrity and robustness..