Security Metrics by Caroline Wong

Author:Caroline Wong
Language: eng
Format: epub
Publisher: McGraw-Hill Education
Published: 2012-06-18T04:00:00+00:00

* * *

Tip

There will always be events that are highly improbable and, therefore, likely to end up at the bottom of the list of priorities. These are sometimes called “black swan” events. I recommend Nassim Taleb’s book, The Black Swan: The Impact of the Highly Improbable, Second Edition (Random House, 2010), for further reading on this topic.

* * *

Alignment with Top Business Objectives

An information security program is not an end in and of itself, but rather a means to protect the business. The information security program can best protect the business by addressing the top strategic initiatives of the business, including the support structures, infrastructure, information flow, and technology needed to make those initiatives happen.

Many organizations define and distribute strategic roadmaps for the next three years, one year, or quarter. It’s important for the information security program to be informed of what’s happening companywide and what’s being done to drive the business. This can be used as direct criteria for prioritizing information security tasks, projects, and initiatives. Items that relate to or support top company initiatives ought to be prioritized above others.

Download

Copyright Disclaimer:
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.