The Risk Management Framework, initially developed by the Department of Defense (DOD), provides organizations a guide to how they should build, secure, and monitor their IT systems; while this risk methodology is intended for government use, it offers a unique perspective on how to secure private organizations as […]
The article I chose to discuss is SIRA’s Reducing Ignorance by Marcin Antkiewicz. Antkiewicz delivers several interesting viewpoints on what risk in and how to predict it, as well as common misconceptions of risk analysis. In Antkiewicz’s experience, he often encounters fellow risk analyzers in his profession who […]
Derek Brink posted the following on the RSA Blog: Bad Decisions Made Faster: How Qualitative Security Risk Assessments Are Making Things Worse (https://blogs.rsa.com/bad-decisions-made-faster-qualitative-security-risk-assessments-making-things-worse/). It’s another argument against qualitative risk analysis. Research and analyze the debate of quantitative versus qualitative risk analysis. In cybersecurity, risk assessment and risk management […]
Securing The Universe 
You must be logged in to post a comment.