In the simplest terms, risk connotes the possibility of harm. How we account for risk and manage it is the result of understanding and quantifying the consequences. What are the effects likely to occur in the event of a cyber-attack or breach on a business ? Who will be harmed? In what way? To what extent? Traditionally, CISOs and their business partners have made cyber risk management decisions using a combination of experience, intuition, judgment, and qualitative analysis. In today’s digital enterprise, however, the number of assets and processes for protection, and the decreasing practicality of a one-size . . .
From the Winter 2021 Issue
Leave a Comment