Executive management will be in the best position to consider the big picture and the trade-offs between security and functionality in the entire organization.
Routine administration of all aspects of security is delegated, but top management must retain overall accountability.
The most important feature of target attacks as seen in advanced persistent threats is that malware secretly sends information back to a command and control server. Therefore, monitoring of outbound server communications that do not follow predefined routes will be the best control to detect such security events.