When it comes to risk management, I believe one of our biggest vulnerabilities is our ability to make good risk decisions based on the information available to us.
Our decisions are often inconsistent, subjective, mypic, and sometimes ignore the obvious. Why? Human nature.
A particular interest of mine is finding repeatable methods to become more effective at evaluating, articulating, and responding to information security risk.
As a result, I read an awful lot of stuff about risk and how it’s managed in other, non-IT disciplines, and look for models and constructs that can be re-used.
I’d like to share some thought-provoking observations with you today.
SOURCE: tripwire.com
Most Commented Posts
2020 Cybersecurity Landscape: 100+ Experts’ Predictions
Cyber Security Predictions 2021: Experts’ Responses
Experts’ Responses: Cyber Security Predictions 2023
Data Privacy Protection Day (Thursday 28th) – Experts Comments
Experts Insight On US Pipeline Shut After Cyberattack
Most Active Commenters
Recent Comments
“Cybersecurity Awareness Month’s new evergreen theme "Secure Our World” is…
“Avoid storing data on personal devices: A crucial but often overlooked…
“I recommend a new nuance to passwords that isn’t often…
“In my role overseeing cloud environments and incident response, I'm…
“Cybersecurity Awareness Month serves as a reminder to confront the…