Risk Based Security Management - Corporate reality or wishful thinking?
A survey reveals the dangerous disconnect between policy and reality
Live 7th November, 3pm- During this web seminar we will be looking at what RBSM is and why risks are frequently under- or overestimated to the detriment of the organisation as a whole.
Live webseminar- 7th November at 3pm
Effective IT security is much more about proper management than it is about shiny new technologies.
Risk Based Security Management (RBSM) can be defined as the cost of mitigating risks to an asset relative to the value of that asset to a business.
It is a simple enough concept, requiring an organisation to establish the value of an asset, the likelihood that a threat will compromise that asset, and the impact or cost to the business of any compromise. Once this has been done an appropriate means by which that asset can be protected can be chosen.
Simple as it may be, the concept is not always properly applied.
During this web seminar we will be looking at what RBSM is and why risks are frequently under- or overestimated to the detriment of the organisation as a whole.
Speakers include:
Michael Aminzade - CISO EMEA, VeriFone
Gavin Millard - EMEA Technical Director, Tripwire
Stuart Sumner - Editor, Computing
John Leonard - Research Editor, Computing