An Introduction to Risk Management Principles for Security Professionals

An Introduction to Risk Management Principles for Security Professionals

In this short article I will present those big ideas from risk management that are highly relevant to security professionals like ourselves. (Admittedly, I am no expert! This is something that I am studying, and I wanted to share what might be most useful with you). As defined by ISC2, “risk management is a detailed process of identifying factors that could damage or disclose data, evaluating those factors in light of data value and countermeasure cost, and implementing cost-effective solutions for mitigating or reducing risk”...

Read More