Risk Management Metrics and Measuring Risk

MUST READ Establishing a Metrics Management System BOOK CHAPTER - This chapter is designed to provide basic guidance necessary for the development of a metrics methodology to understand what, why, when and how infosec can be measured. Three techniques for measuring information systems risk TIP - Improve your ability to measure information systems risk with these three techniques. Security: Measuring Up TIP - Metrics are the key to measuring security. Learn how to gather data and calculate the answers you need.

VIDEO: 1 - 1 of 1

	2007 Security 7 Awards SearchSecurity.com | 15 Jul 2008 VIDEO - The industry's best and brightest security officers discuss key issues and answer questions during the Security 7 awards at the 2007 Information Security Decisions conference.

	VIEW ALL VIDEO ON RISK MANAGEMENT METRICS AND MEASURING RISK

EXPERT TECHNICAL ADVICE: 1 - 3 of 24

RISK MANAGEMENT METRICS AND MEASURING RISK EXPERTS
			David Mortman ASK A QUESTION

	Security beyond compliance: A proactive and customized security framework 02 Dec 2008 TIP - Though compliance guidelines are a good place to start, they in no way guarantee the security of a network. Marcos Christodonte II explains how to create a security framework.

	Failure mode and effects analysis: Process and system risk assessment 26 Mar 2008 TIP - Gideon T. Rasmussen explains how the failure mode and effects analysis (FMEA) methodology can quantify the significance of exposures to management.

	Why you shouldn't wager the house on risk management models 05 Dec 2007 TIP - As Mike Rothman explains, risk management metrics are helpful at budget time, but be wary of putting all your eggs in the risk prevention basket.

	VIEW ALL EXPERT TECHNICAL ADVICE ON RISK MANAGEMENT METRICS AND MEASURING RISK

NEWS: 1 - 3 of 35

	IT security risks dismissed by boards, survey finds SearchSecurity.com | 04 Dec 2008 ARTICLE - A Carnegie Mellon University report illustrates the lack of understanding boards of directors have when it comes cybersecurity risks and their impact on overall business.

	Death of a risk assessor SearchSecurity.com | 11.19.2008 OPINION - Old-world risk assessment doesn't cut it in the fast-changing world of technology

	Security spending driven by mergers, Web 2.0 and compliance SearchSecurity.com | 28 Oct 2008 ARTICLE - PricewaterhouseCoopers' annual Global State of Information Security Survey found mergers, Web 2.0 and other business initiatives driving spending nearly as much as compliance.

	VIEW ALL NEWS ON RISK MANAGEMENT METRICS AND MEASURING RISK

REFERENCE & LEARNING: 1 - 3 of 6

	Quiz: Developing a risk-based compliance program SearchSecurity.com | 28 Jan 2008 QUIZ - A five-question multiple-choice quiz to test your understanding of the content presented by expert Richard Mackey in this lesson of SearchSecurity.com's Compliance School.

	Security Metrics: Replacing Fear, Uncertainty, and Doubt SearchSecurity.com and Addison-Wesley | 10 Jul 2007 BOOK CHAPTER - In this chapter excerpt from "Security Metrics: Replacing Fear, Uncertainty and Doubt," author Andrew Jaquith reveals ways to present security data in a clean and elegant manner.

	Multi-dimensional enterprise-wide security: Risk assessment and analysis methodologies Realtimepublishers.com | 10 Jan 2006 10 TIPS IN 10 MINUTES - Learn how to protect information assets and resources within all areas of the enterprise and in compliance with all regulatory, policy and contractual requirements.

	VIEW ALL REFERENCE & LEARNING ON RISK MANAGEMENT METRICS AND MEASURING RISK

MAGAZINE CONTENT (free subscription required): 1 - 3 of 10

	Bruce Schenier, Marcus Ranum debate risk management Information Security Magazine | 01 Oct 2008 COLUMNS - Experts Bruce Schneier and Marcus Ranum debate whether risk management is an appropriate strategic direction for information security professionals to follow.

	Interview: Financial Services CISO David Pollino Information Security Magazine | 01 Jun 2008 COLUMNS - CISO Uses Predictive Analystics to Bolster Risk Management Program

	Researcher Puts Quantitative Measurement on Information Security Threats Information Security Magazine | 01 Mar 2008 COLUMNS - Editor's Desk: Score One for Threats

	VIEW ALL MAGAZINE CONTENT ON RISK MANAGEMENT METRICS AND MEASURING RISK

WEBCASTS: 1 - 2 of 2

	7 Proven Ways to Measure Security - Vendor Webcast VIEW WEBCAST PREMIERED:   25 OCT 2005, 14:00 EDT (18:00, GMT) SUMMARY:   Is your department viewed as a cost center? Attend this webcast and learn how to demonstrate your value by quantifying the importance of reduced downtime for your business.

	CISSP Essentials: Mastering the Common Body of Knowledge -- Class 1, Security management practices - Expert Webcast VIEW WEBCAST PREMIERED:   14 OCT 2004, 09:00 EDT (13:00, GMT) SUMMARY:   While viruses, worms and hacking grab all the news headlines, sound security management practices are the foundation of any organization's security success.

	VIEW ALL WEBCASTS ON RISK MANAGEMENT METRICS AND MEASURING RISK

	SEE ALSO - Topics Related to Risk Management Metrics and Measuring Risk:  Risk Assessment and Analysis