January 2022
Beginner
408 pages
11h 20m
English
Content preview from Mastering Risk Management
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
INTRODUCTION
There is no shortage of information on how to secure your information assets. In addition, there is a temptation to chase every new threat as it appears and forget the fundamentals. However, basic information security risk management should follow the 80/20 rule that exists in most of risk management – 80% of the risk exposure can be covered by 20% of the work or, put another way, you can get a long way for relatively little effort.
That is not to say that information security risk management is easy. Indeed, it is a deceptively wide subject with many technical traps for the unwary. However, this subject can be successfully approached, like many others, from a business perspective rather than overemphasis on the technical jargon. ...