1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Enterprises Need to Improve IT Vendor Risk Management

Discussion in 'Network World' started by RSS, Dec 3, 2015.

  1. RSS

    RSS New Member Member

    I had the pleasure of attending a presentation given by Dr. Ron Ross, a fellow at the National Institute of Standards and Technology (NIST). Ron’s areas of specialization include information security, risk management, and systems security engineering.

    In his presentation, Dr. Ross delivered a bit of a counterintuitive message on cybersecurity by stating, “We have to stop obsessing about threats and start focusing on asset protection. To drive home this point, Dr. Ross added, “If 90% of our bridges were failing, we’d mobilize teams of engineers right away. Yet when 90% of our IT systems are insecure, we focus a good part of our attention on external threats.”

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page