Security professionals have lived by the three pillars of risk management AVOID, TREAT, ACCEPT – but the landscape is changing. More than ever before, security is clearly a no-win game. The keys to the kingdom are no longer in the hands of the generals and policy makers. Their decisions and discussions are enabled by email, IM and IP telephony, all of which sit firmly in the domain of IT department and system admin and stressed, poorly paid employees do not make the ideal custodians of such critical information.”]
Source: https://www.csoonline.com/article/2136123/is-the-time-right-to-spread-your-risk-.html