Information Risk Management: A practitioner’s guide

8 RISK REPORTING AND PRESENTATION

The process of communicating within the information risk management programme is extremely important, and serves a number of purposes. It allows the information risk management programme manager to:

maintain a two-way flow of information between the programme manager and those stakeholders who are closely involved in the process of impact, threat and vulnerability assessments;
keep the organisation’s senior management and other stakeholders informed of general progress;
flag up any risks deemed to be very severe, and which require immediate attention;
present business cases requesting approval of recommendations and funding;
report on those risks that have been successfully treated and those that remain untreated. ...

Get Information Risk Management: A practitioner’s guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Information Risk Management: A practitioner’s guide by David, Sutton

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly