Book
Rethinking Risk-based Information Security
Faculty Articles
Department
Information Systems
Document Type
Book Chapter
Publication Date
1-1-2011
Disciplines
Abstract
The information security discipline has a common body of knowledge comprised of many facts, techniques, and ways for its practitioners to accomplish the objectives of securing the information assets of the companies by which they are employed. Sometimes these practitioners simply do things the way they have always been done. Perhaps some of the practices need to be reexamined. One that needs attention is the way that risk-based decision making is applied in places that it may not improve the outcomes of the problems being addressed.
Citation Information
Mattord, Herbert. "Rethinking Risk-based Information Security." Readings and Cases in Information Security: Law and Ethics. Eds. Michael E. Whitman and Herbert J. Mattord. Boston: Course Technology, 2011. 85-96.