Document Controls

  • View a Print Friendly version of this document

    Print

  • Toggle highlighting of search terms in this document

  • Text Size: 

    • A (normal)
    • A (larger)
    • A (largest)

For Security & Risk Professionals

Primary Analyst Photo Document Information Rate this Document

January 6, 2010

Introducing ERM To IT Security And Risk

How Enterprise Risk Management Standards Can Work For IT

by Chris McClean

with Khalid Kark, Nicholas Hayes

Average:
(1 rating)

This is an excerpt

Executive Summary

As IT security programs mature and start to work more closely with other parts of the business, they are expected to function and communicate in business terms. This has led many information security professionals to begin adopting more business-focused IT risk management practices. Forrester uses key elements of enterprise risk management standards as well as lessons learned from successful customer examples to provide guidance for building a formal IT risk management program that communicates well with, and adds value to, the rest of the organization.

TABLE OF CONTENTS

  • IT Security Continues To Struggle With Risk Management
  • Applying ERM Standards To IT Security And Risk
  • Program Management And Oversight Will Determine Success Level

RECOMMENDATIONS

  • Customize The Risk Management Processes To Fit Your Needs

WHAT IT MEANS

  • Tackling The Opportunity Side Of Risk Management
  • Supplemental Material
  • Related Research Documents

This is an excerpt

Buy Risk-Free

Price: US $499

Our Service Guarantee: If you are not completely satisfied with this document, notify Forrester within 24 hours of purchase for a full refund.

Already a Forrester Client?
Log in to read this document.

Add to cart

Save and Share

Document Tools

Spread the word:

ALSO OF INTEREST

RESEARCH CATEGORIES

Analyst

Chris McClean

Technology

Security & Risk, Governance, Risk, & Compliance, Regulations & Legislation

Geography

Asia Pacific, Europe, North America