by Binoy KL | Jan 19, 2012 | Risk Management
Information security risk assessment is an integral process in developing an effective information security management system. Unless the organization understand and document the information security status or the information security risk posture, they would not be...
by Binoy KL | Dec 31, 2011 | Information Security School
Risk Management is a key term we keep discussing every now and then when we talk about information security. It often is the closing aspect of the identified risks. Risk is the probability of a vulnerability being exploited by a threat and the resulting business...
by Binoy KL | Sep 27, 2011 | Risk Management
Risk appetite today is a core consideration in any enterprise risk management approach. As well as meeting the requirements imposed by corporate governance standards, organisations in all sectors are increasingly being asked by key stakeholders, including...
by Binoy KL | Jan 11, 2011 | Corporate Security
Building a comprehensive Information Security plan requires a detailed understanding of the business and the related requirements. An Information Security plan should ensure that the business requirements are captured and the related risks and controls are addressed...
by Binoy KL | Mar 9, 2010 | Standards & Compliance
NIST has recently released the final publication of the “Guide for Applying the Risk Management Framework to Federal Information Systems: A Security Life Cycle Approach”. This NIST special publication (NIST Special Publication 800-37, Revision 1) can be...
Recent Comments