Risk management now driven by 'fear', not strategic enough
- Published on Friday, 03 August 2012 18:50
- Written by Mike McClain, Web Editor
Risk management policies should be more "strategic and proactive", instead of "tactical and fear-driven", according to security watchers, who note despite the growing awareness over the importance of IT security, its approach can still be improved.
According to Ang Poon-Wei, ICT security market analyst at IDC, in the past, due to the costs incurred by IT security, many organizations often leave it out of discussions until the last minute or unless it is mandatory for government, risk and compliance. Today, the need to include IT Security in risk management discussions is becoming apparent to organizations of all sizes and verticals, he noted.
To read the article, please click here: