PRO+ Premium Content/Information Security magazine

Thank you for joining!
Access your Pro+ Content below.
June 2003

Roundtable: Practical strategies for enterprise-wide risk management

Conversation: Four CISOs explore practical strategies for enterprise-wide risk management, from classification to assessment to monitoring to response. Participants: RON BAKLARZ Chief Information Security Officer, American Red Cross ROBERT GARIGUE Chief Information Security Officer, Bank of Montreal Financial Group LESTER JOHN Assistant Vice President of Security, Fleet Securities BOB WYNN Chief Information Security Officer, State of Georgia   INFORMATION SECURITY MAGAZINE (ISM): Risk assessment is a fundamental responsibility for infosecurity managers. There are lots of formal models for this--annualized loss expectancy (ALE), cost/benefit analysis, Six Sigma, etc. How comprehensive should a risk assessment be, and should the CISO always follow a formal model? ROBERT GARIGUE, BANK OF MONTREAL: The CISO probably has the best perspective on technical risks. But their perspective gets a bit murky when it comes to the total picture of operational risk, where the company has to deal with things like legal issues and regulatory ...

Access this PRO+ Content for Free!

By submitting your personal information, you agree that TechTarget and its partners may contact you regarding relevant content, products and special offers.

You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

Features in this issue

Columns in this issue