A centralized governance structure in information security implies that decision-making authority is spread out among various departments and teams within the organization.
A centralized governance structure means that decision-making authority is concentrated at a single point, usually at higher levels of the organization, rather than being spread out among departments. The opposite of a centralized structure is a decentralized or distributed governance structure, where decision-making is spread out among various departments and teams.