Discuss risk management and ways of implementing measures to reduce risk in the organizations information security program
You have been asked to attend a management meeting in your organization and discuss the area of risk management and your thoughts on implementing measures to reduce risk in the organization’s information security program. Areas you should research and be prepared to articulate are broad, but some areas to consider may include the following:
- Define risk management and how evaluating risk reduces the vulnerability of an information and communication technology (ICT) system breach; consider both insider and outside risks.
- Identify 2 proactive and 2 defensive measures to consider when building an information security program; consider both technical and managerial measures.
- Articulate how key risk indicators (KRIs) drive the security strategy of enterprise information and communication technology (ICT) systems?
- How can ICT system security management gain executive support to implement risk management strategies that may be costly but reported as effective
Answer preview for Discuss risk management and ways of implementing measures to reduce risk in the organizations information security program
Access the full answer containing 823 words by clicking the below purchase button.