Presentation is loading. Please wait.

Presentation is loading. Please wait.

Information Risk Management Brittney Berry Kris Collum Jessica Grant.

Published byNoel Houston Modified over 9 years ago

Similar presentations

Presentation on theme: "Information Risk Management Brittney Berry Kris Collum Jessica Grant."— Presentation transcript:

1 Information Risk Management Brittney Berry Kris Collum Jessica Grant

2 Outline Information Risk Management Challenges of Information Security People Involved The Risks Involved Threats to Risk Management Risk Mitigation Options

3 What is Information Risk Management? Definition Goal Two Main Elements ▫Risk Analysis ▫Risk Management

4 Why is Information Security so Challenging? Adversary vs. Defender Ever-changing Resources

5 Who is involved in Information Risk Management? CISO, CPO, CPSO, CCPO Chief Information Risk Officer Risk Management Roles and Responsibilities ▫BOD ▫IT strategy committee ▫CEO ▫Business executives ▫CIO

6 What are the risks? Investment or expense risk Access or security risk Integrity risk Relevance risk Availability risk Infrastructure risk Project ownership risk

7 What are the threats to risk management? Natural threats Human Threats Environmental Threats

8 Risk Mitigation Options Risk Assumptions Risk Avoidance Risk Limitation Risk Planning Risk Transference

9 Sources IT Governance Institute. Information Risks: Whose Business Are They? 2008. Pironti, John. Key Elements of an Information Risk Management Program: Transforming Information Security Into Information Risk Management. 2008 National Institute of Standards and Technology. Risk Management Guide for Information Technology Systems. 2002

Download ppt "Information Risk Management Brittney Berry Kris Collum Jessica Grant."

Similar presentations

Transition Planning The Secretariat is directed to prepare initial GEO transition documents for consideration at GEO-6 to provide for the following elements:

Transition Planning The Secretariat is directed to prepare initial GEO transition documents for consideration at GEO-6 to provide for the following elements:
Www.theiia.org Continuous Auditing Global Technology Auditing Guide 3 Twelfth Continuous Auditing and Reporting Symposium Rutgers Business School November.

Continuous Auditing Global Technology Auditing Guide 3 Twelfth Continuous Auditing and Reporting Symposium Rutgers Business School November.
“High Performing Financial Institutions and the Keys to Success in an Uncertain Environment”

“High Performing Financial Institutions and the Keys to Success in an Uncertain Environment”
S2-1 © 2001 Carnegie Mellon University OCTAVE SM Process 2 Identify Operational Area Management Knowledge Software Engineering Institute Carnegie Mellon.

S2-1 © 2001 Carnegie Mellon University OCTAVE SM Process 2 Identify Operational Area Management Knowledge Software Engineering Institute Carnegie Mellon.
Information Security Governance

Information Security Governance
Keystone Technology Plan Presentation to Chesapeake Bay Program Information Management Subcommittee May 19, 2004 Nancie L. Imler Chief Information Officer.

Keystone Technology Plan Presentation to Chesapeake Bay Program Information Management Subcommittee May 19, 2004 Nancie L. Imler Chief Information Officer.
Cybersecurity Summit 2004 Andrea Norris Deputy Chief Information Officer/ Director of Division of Information Systems.

Cybersecurity Summit 2004 Andrea Norris Deputy Chief Information Officer/ Director of Division of Information Systems.
IT Governance and Management

IT Governance and Management
Department of Internal Affairs Cloud computing considerations John Roberts Director, Relationship Management CRI Records Managers 11 June 2015.

Department of Internal Affairs Cloud computing considerations John Roberts Director, Relationship Management CRI Records Managers 11 June 2015.
Doğancan USTACAN Hasan KÜTÜKÜT Abdullah Cihan Küçük Sevil KUGU.

Doğancan USTACAN Hasan KÜTÜKÜT Abdullah Cihan Küçük Sevil KUGU.
Managing Risk in Information Systems Strategies for Mitigating Risk

Managing Risk in Information Systems Strategies for Mitigating Risk
IT Strategic Planning Discussion Group Debra Allison, Deputy CIO Miami University

IT Strategic Planning Discussion Group Debra Allison, Deputy CIO Miami University
Implementing an Enterprise GIS in a Municipal Environment Presenter: Chenay Simms.

Implementing an Enterprise GIS in a Municipal Environment Presenter: Chenay Simms.
Good Corporate Governance in Practice. Outline What is Corporate Governance? Regulatory Requirements for Banks in Sri Lanka DFCC Practices - Key Elements.

Good Corporate Governance in Practice. Outline What is Corporate Governance? Regulatory Requirements for Banks in Sri Lanka DFCC Practices - Key Elements.
Internal Auditing & Management Control ACCT 620 Otto Chang Professor of Accounting.

Internal Auditing & Management Control ACCT 620 Otto Chang Professor of Accounting.
Elements of Code of Corporate Governance: East Asia Perspective Prof. Stephen Y.L. Cheung Department of Economics & Finance City University of Hong Kong.

Elements of Code of Corporate Governance: East Asia Perspective Prof. Stephen Y.L. Cheung Department of Economics & Finance City University of Hong Kong.
IntelliDrive Policy and Institutional Issues Research Valerie Briggs Team Lead, Knowledge Transfer and Policy, ITS Joint Program Office, RITA May 4, 2010.

IntelliDrive Policy and Institutional Issues Research Valerie Briggs Team Lead, Knowledge Transfer and Policy, ITS Joint Program Office, RITA May 4, 2010.
Copyright © 2011 - The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation.
IT Risk Management, Planning and Mitigation TCOM 5253 / MSIS 4253

IT Risk Management, Planning and Mitigation TCOM 5253 / MSIS 4253
Transport Development and Solutions Alliance (TDSA) Technology Evolving Business Functions Scott Lawton – Chief Executive Officer 7 th of August 2015.

Transport Development and Solutions Alliance (TDSA) Technology Evolving Business Functions Scott Lawton – Chief Executive Officer 7 th of August 2015.

Similar presentations

Ads by Google