Search
-
Re: IT Security Risk Management Course/Studying
-
Re: IT Security Risk Management Course/Studying
The absolute BEST resources are probably going to be the CRISC and CISM Review Manuals from ISACA (I own them and a bunch of other related books). The cheapest, but still good options are going to be Security Risk Management: Building an Information Security Risk Management Program from the Ground Up and Information… -
Re: IT Security Risk Management Course/Studying
Business risk varies by industry, location, climate, etc....so you need to understand things like business objectives, competitors, and technology utilized for starters. For example, government will be worried about nation-state attackers but a fishing company is unlikely to be concerned with that...thus the controls will… -
Re: IT Security Risk Management Course/Studying
Yes, start with identifying critical assets and critical areas of the network. And assign criticality to them, come up with your own numbers or looks up some risk assessment templates and methodologies. For example lets say you have an internal server that hosts an application that internal users use on a daily basis, if…
4 results