Incorporating Cyber Risks into the Enterprise Risk Management Strategy

by Rodney F. Davis
Oct. 2, 2017 1 comment Infosecwriters Management

Once the overall Objectives, Goals, Strategy, and Measures (OGSM) have been established for a firm or organization as part of the strategic planning process, the real work commences to begin monitoring the progress towards OGSM along with the intent of maintaining a competitive economic edge and increased profitability. During this monitoring, risks are deferred, mitigated, transferred, or tolerated\accepted based on the risk appetite of the firm and the overall Enterprise Risk Management Strategy.

http://www.infosecwriters.com/Papers/RDavis_EnterpriseRisk.pdf

Avatar
Irina Alexandra Negrii 7 months, 1 week ago

Consequently, cybersecurity is no longer just about deflecting attackers. Today, it’s
about figuring out how to manage and stay ahead of intruders that are already inside
the organization.

Reply