|
| |
simplicable technology guide
»
security
»
risk management process
Build A Risk Management Process You Can Be Proud Of
posted by John Spacey, October 10, 2011
IT Risk Management can be a challenge for many organizations. The good news is that the process itself is relatively simple.
As a reference consider the ISO 27001 risk management process:
IT Risk Management begins with identifying and qualifying threats and vulnerabilities. The next step is to decide whether to accept, avoid, transfer or reduce each risk. Finally, risks need to be communicated and controls established.
It should be noted that Risk Management is only one component of a comprehensive ISO 27001 information security management system (ISMS).
|
Explaining complex business and technical concepts in layman's terms.
|
|
Current state blueprints capture business, data and implementation architecture at the conceptual, logical and physical levels.
|
|
What is the value of your EA project in 9 words or less?
|
Recently on Simplicable
| |
posted by John Spacey
3 approaches to SOA reuse.
|
| |
posted by Anna Mar
Like any powerful new tool, big data can either be used to improve life or to make life worse.
|
| |
posted by Anna Mar
Somebody tell the CFO — IT ROI has gone the way of the dinosaurs.
|
| |
posted by John Spacey
Tools and strategies for IT managers.
|
|
