INTRODUCTION
There is no shortage of information on how to secure your information assets. In addition, there is a temptation to chase every new threat as it appears and forget the fundamentals. However, basic information security risk management should follow the 80/20 rule that exists in most of risk management – 80% of the risk exposure can be covered by 20% of the work or, put another way, you can get a long way for relatively little effort.
That is not to say that information security risk management is easy. Indeed, it is a deceptively wide subject with many technical traps for the unwary. However, this subject can be successfully approached, like many others, from a business perspective rather than overemphasis on the technical jargon. ...
Get Mastering Risk Management now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
