There is only one way to eliminate risk

One common misconception of risk management that I have come up against time and time again is that by managing a risk it has been eliminated and can be closed and removed from the risk register. This is simply not the case as risks can evolve and change over time for any number of reasons.

Read More

CIA requirements

This is a posting I made from a discussion, on the LinkedIn Information Security Community Group, on which of Confidentiality, Availability and Integrity is most important.

Read More