Many people in the IT industry and management consultants have often commented on the poor management of the cyber risk as compared with other risks in business. A survey by Bay Dynamics presented at an RSA conference in San Francisco set out a number of factors.
- Experts present the information to managers in cyberspeak and nobody likes to admit to not understanding.
- Experts fail to give quantitative information, so it is not possible to make rational judgments balancing the risk with the cost of reducing it.
- Experts offer solutions that are not affordable or practical.
Does any of this sound familiar? I hope the following chapters will help.
Please note that, because I have included data protection, many of the issues ...
Get Risk and Win! now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
