This blog is about risk management from a security point of view. The goal of risk management is NOT to prevent all possibility of bad events or outcomes. An inclusive approach optimizes the effect of your risk management decisions and the efficiency of your controls. CSOonline has been covering ERM explicitly since 2008 and many of the ideas we’ve gleaned from CSOs are still timely and useful, forming a good foundation for real security risk management. This blog will focus on data and data-based decision making.”]
Source: https://www.csoonline.com/article/2135926/welcome-to-risk-s-rewards.html