Category: Risk Management

April 19th, 2017 by John

This article has some very good insights regarding what board members say they want and what they are getting from CISOs. They still tend to be skeptical of risk presented as loss predictions in dollars. Storytelling still has an important role to play.

Posted in Infosec, Risk Management

April 3rd, 2017 by John

A very good write up on how the FAIR quantitative method can be used to help COSO succeed.

Posted in Infosec, Risk Management