A Framework for Measuring InfoSec as a Business Function

In my December column, I ended with the observation that many CISOs struggle when it comes to first determining and then actually communicating the business value of the security options out there. Often, that failure stems from CISOs who lack a background in finance and economics, and their inability to couch security solutions in business terms can prevent the deployment of controls that improve security while using existing or less resources.

Read full article on Security Magazine

 


Date:

Categorie(s):