PRO+ Premium Content/Information Security magazine

Thank you for joining!
Access your Pro+ Content below.
March 2004

How to sell risk assessment benefits to IT execs

Scrutinizing expenses is a primary responsibility of senior executives. They won't approve a single purchase order unless you show a benefit. As a security manager, you know that organization-wide security risk assessments are expensive. Examiners and auditors from the Big 4 will charge huge fees -- as much as $500 per hour -- to comb your network for vulnerabilities, inefficiencies and noncompliance with security policies and standards. And what do you get for it? A big stack of paper filled with barely comprehensible technobabble. The corner office can't easily appreciate that. You know you need a risk assessment to show that you're secure and to find the problems that expose your enterprise to risk. But how do you sell your CFO on that expensive proposition? My advice: Use these 10 risk assessment benefits to show that a risk assessment isn't only necessary, but also can produce some cost-saving benefits. 1. Plug Security Holes No network, no matter how tightly guarded, is immune to the occasional lapse in its defenses or ...

Access this PRO+ Content for Free!

By submitting your personal information, you agree that TechTarget and its partners may contact you regarding relevant content, products and special offers.

You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

Features in this issue

Columns in this issue

  • The security improvements of Microsoft ISA Server 2004

    by  Victor R. Garza

    In an effort to bolster its security image, Microsoft is going to release its ISA Server 2004 later this year. Here you will learn about the security improvements of Microsoft ISA Server 2004.