D. BlumRational Cybersecurity for Businesshttps://doi.org/10.1007/978-1-4842-5952-8_5

5. Manage Risk in the Language of Business

Dan Blum¹

(1)

Silver Spring, MD, USA

For too long, information risk management has been lost in translation. Technical risk analyses were unintelligible to the business and even security practitioners lacked common terms, definitions, or analysis models. Without a working risk management framework, security and business leadership have found it hard to agree on priorities, policies, or budgets. Even security teams struggle prioritizing which controls to implement.

But this need no longer be the case. In this Chapter, we’ll learn how businesses can use the standard ISO 31000 Risk Management framework, ...

Get Rational Cybersecurity for Business: The Security Leaders' Guide to Business Alignment now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Rational Cybersecurity for Business: The Security Leaders' Guide to Business Alignment by Dan Blum

5. Manage Risk in the Language of Business

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly