clear

Subscribe

Recent Posts

clear

Archives

2018
Jan Apr May Jul Aug

2017
Jan Feb Mar Apr May Jul Aug Sep Oct Nov Dec

2016
Sep Oct Nov Dec

2014
Apr

2013
Feb Jun Jul

2012
Jan Feb Aug Oct

2011
Jan Feb Mar Jun Jul Sep Oct Dec

2009
Mar Apr

clear
Monday, 5 September 2016
Enterprise Risk Management and Information Security
Share
clear
Enterprise Risk Management (ERM) has been around at least since the days of the Trojan Horse.  Information security risk management can learn much from ERM and avoid reinventing the wheel.  The National Association of Corporate Directors (NACD)  made this clear in the 2014 handbook Cyber-Risk Oversight.  Principle #1 is to approach cybersecurity as an enterprise-wide risk management issue.  For updated observations on ERM and information security, go to my CSO Online blog post "Don't be the next Humpty Dumpty".
clear
Posted on 09/05/2016 3:04 PM by Frederick Scholl
Comments
No comments yet.