Home
Topics
Information Security Management
Enterprise Risk Management: Metrics and Assessments

Broad participation key to successful GRC framework

Broad participation key to successful GRC framework

Chris McClean of Forrester Research provides a GRC framework. It offers three lines of defense to boost participation rates and define clear roles.
MORE HIGHLIGHTS

Whistleblower policy: Preventing a 'Snowden' incident

NSA-level incidents are rare, but they do happen. Learn how to prevent a whistleblower scenario and limit the risk of insider information leaks.
Leveraging IT asset management to reduce infosec risk

IT asset management expert Barb Rembiesa explains how ITAM best practices like IT asset standardization and rationalization reduce IT security risk.
Editor’s desk: A chat with Peter G. Neumann

Peter G. Neumann shares his thoughts on the inherent complexity of trustworthiness and the evolutionary promise of clean-slate architectures.

Enterprise Risk Management: Metrics and Assessments

Email Alerts

Register now to receive SearchSecurity.com-related news, tips and more, delivered to your inbox.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Martin Roesch: Increase in cybersecurity breaches demands new tactics

Video: Sourcefire interim CEO Martin Roesch discusses the need for new tactics amid rampant cybersecurity breaches, plus APTs, big data and CISO priorities. Video
Kaminsky: Fostering improved security culture demands societal change

At B-Sides San Francisco, Dan Kaminsky discussed how society inhibits its own security culture, and the need to look beyond status-quo technology. Column
Creating a normalized corporate compliance program

It's essential for IT security managers to create a corporate compliance program to adhere to regulations while maintaining a productive workplace. Video
Meeting PCI DSS compliance requirements with a data management program

In order to meet PCI DSS requirements and compliance, it is important to organize and sort the data coming in by devising a data management plan. Video
Security data mining techniques to weed through data overload

These security data mining techniques will allow security professionals to find and tackle the real issues while overcoming data overload. Video
Converging audit and risk management programs a flawed approach, says expert

Most risk management programs fail because they end up being another audit function, explains Alex Hutton, a faculty member at IANS. News
PCI Council: Risk assessment methodology unique to company environment

The PCI Risk Assessment Special Interest Group concludes that risk assessments are based on a company's unique risk tolerance and environment. News
Security Risk Assessment Process a Team Effort at Notre Dame

The university created a committee to tackle risk assessment on an ongoing basis. Feature
Information Security Decisions: From Dogma to Data

The information security field needs to overcome information sharing roadblocks to improve decision making. Feature
Forrester's GRC framework: Using three lines of defense

Chris McClean of Forrester Research provides a GRC framework. It offers three lines of defense to boost participation rates and define clear roles. Tip

Latest Headlines

Featured

E-Books

E-Zines

E-Handbooks

Topics

Hot Topics

Advice & Tutorials

Technology Dictionary

Tips

Answers

Ask a Question

Research Library

Product Demos

Resource Centers

Blogs

MORE HIGHLIGHTS

Enterprise Risk Management: Metrics and Assessments

Email Alerts

More from Related TechTarget Sites