Risk-based Information Security
How do you even start protecting your information assets if you don’t have an understanding of the risk to them? I would venture to say… you don’t. It’s difficult for some to get started down this path because they quickly get overwhelmed with the task at hand. Many times, a good effort gets set aside [...]
Monday December 28th, 2009 in , information security, ISO 27001/27002, risk, security enabler, vulnerability management | No Comments »