This is cache of http://feeds.feedburner.com/~r/PracticalRiskManagement/~3/240938984/top-3-conclusions-about-it-risk.html. Cache is the snapshot of article that we took when we index feed.
To see original page click here.
We are not affiliated with the authors of this article and not responsible for its content.
Top 3 conclusions about IT Risk Management we like hearing
2008-02-25 14:28:00 by Ryan Shopp in practical risk management
 
I read a nice summary of a recent Symantec 40 page survey on IT Risk Management and felt compelled to share the links and highlights that jump out. Symantec was recently noted as a leader in IT-GRC per this Gartner report.

The summary I read was posted by John Edwards over at ITSecurity.com.

Here are the conclusions that grabbed our eye:
  • Businesses would be far better served if they viewed security as an IT risk management element that can be addressed alongside other critical elements, such as availability, performance and compliance.
  • Technology alone can't mitigate IT risk. While technology plays a critical role in IT risk mitigation, balanced controls and frameworks are also necessary in order to provide complete risk management capabilities.
  • Management should consider implementing a continuous risk assessment process.
 
Tags: risk management, risk, risk management element, risk mitigation, management, recent symantec, nice summary, technology plays, technology
 
 
 
 
 
RELATED VIDEO
Expand / Minimize
SecurityRatty FAQ
Sergey Zarubin, 31yo
CISSP, CCSP
Moscow, Russia