IT Auditing Using Controls to Protect Information Assets, Third Edition, 3rd Edition

CHAPTER 21 Risk Management

Managing risk is not a new business phenomenon. Every company in every industry vertical carries its own inherent risk. For example, manufacturing businesses face operational risk in the form of potential loss ranging from failed internal equipment to mistakes made by employees. While most businesses can manage the common risks, they rarely manage all risk in a holistic manner. One type of risk that is difficult to manage is cyber risk. The cyber risk landscape has changed considerably. Years ago, perimeter firewalls and antivirus software on computers were enough to effectively reduce your risk of a cyber event. Today, sophisticated phishing attacks (e-mails used to trick employees into disclosing sensitive information ...

Get IT Auditing Using Controls to Protect Information Assets, Third Edition, 3rd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

IT Auditing Using Controls to Protect Information Assets, Third Edition, 3rd Edition by Mike Kegerreis, Mike Schiller, Chris Davis

CHAPTER 21

Risk Management

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly