Your Practical Guide to Effective Information Risk Management
The subject of information risk management is on the radar screens of more and more executive teams and Boards. Advice on managing cyber risk is emerging from numerous organizations, including the National Association of Corporate Directors and the New York Stock Exchange. The subject of information risk management is on the Congressional agenda as well with Senate Bill 754 and a goal to: “To improve cybersecurity in the United States through enhanced sharing of information about cybersecurity threats, and for other purposes.”
In response to the “call to arms” from within and outside their organizations, senior leaders are exposing a current state of siloed, tactical, technical spot-welding and firefighting when it comes to managing these risks.4 Industries, especially those comprising the national critical infrastructure must move to a more strategic, business-oriented and architectural Information Risk Management (IRM) approach and posture. Organizations in the private and public sector must do a better job protecting our national digital assets and safeguarding the sensitive personal information with which they have been entrusted.