12 Control Design and Implementation

As we learned earlier in this book, risk mitigation is one of the most common responses in risk management. A risk manager needs to be aware of adequate risk mitigation techniques to reduce the risk to an acceptable level. Control design and implementation is one of the most important steps in risk mitigation. With the ever-changing threat landscape, the controls that are implemented today may become irrelevant tomorrow, and therefore, controls should be reviewed periodically to determine and continue their effectiveness.

This chapter aims to help you learn about the different types of controls, standards, frameworks, and methodologies for control design and selection, as well as how to implement them effectively. ...

Get ISACA Certified in Risk and Information Systems Control (CRISC®) Exam Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

ISACA Certified in Risk and Information Systems Control (CRISC®) Exam Guide by Shobhit Mehta

12

Control Design and Implementation

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly