Why Risk Management Fails in IT
- Published on Tuesday, 16 October 2012 17:04
- Written by Mike McClain, Web Editor
It is frustrating to see the amount of budget allocated to compliance when you consider that most of the money goes to documenting security controls, not improving defenses. One of the biggest reasons is that risk management, a carry-over from the bigger world of business, does not work in IT security.
To read the article, please click here: