Save or Share this Report

For Security & Risk Professionals

Introducing ERM To IT Security And Risk

How Enterprise Risk Management Standards Can Work For IT

January 6, 2010

Primary author headshot


Why Read This Report

As IT security programs mature and start to work more closely with other parts of the business, they are expected to function and communicate in business terms. This has led many information security professionals to begin adopting more business-focused IT risk management practices. Forrester uses key elements of enterprise risk management standards as well as lessons learned from successful customer examples to provide guidance for building a formal IT risk management program that communicates well with, and adds value to, the rest of the organization.

Get Access

Already a Client?

Log in to read this document.

Become a Forrester Client

Customers are the new market-makers, reshaping industries and changing how businesses compete and win. Success depends on how well and how fast you respond. Forrester Research gives you insights and frameworks aligned to your role to shorten the time between a great idea and a great outcome, helping your teams win in the age of the customer. Contact us to learn more.

Purchase Report

This report is available for individual purchase ($499 USD).


Table of Contents

  • IT Security Continues To Struggle With Risk Management
  • Applying ERM Standards To IT Security And Risk
  • Program Management And Oversight Will Determine Success Level

  • Customize The Risk Management Processes To Fit Your Needs

  • Tackling The Opportunity Side Of Risk Management
  • Supplemental Material
  • Related Research Documents

Recommended Research