INTRODUCTION
Information is critical to every large enterprise, yet its mission-critical importance is all too often overlooked – until something goes wrong.
Information risk management is a method of assessing information threats, which can be anything from a burst pipe flooding your server room to someone leaving a laptop on the train, and taking actions to minimise the chances of risks becoming reality.
The reasons for managing information risk are many. Properly implemented security controls sparked by a risk assessment could save huge financial or reputational fallout.
A 2008 cybercrime report by McAfee suggests that globally businesses lose $1 trillion a year in lost intellectual property and expenditures for repairing the damage. And ...
Get Managing Information Risk: A Director's Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
