I know you have been in a social party taking pleasure in a great conversation if somebody asks you: “So where do you turn?Inches. It’s frustrating sometimes to describe in layman terms what we should do as information security professionals. In addition, it appears like everybody in the market has his very own method of determining the most generally used terminology for example information security, risk management and regulating compliance. You will find various methods to allow us to better show others (as well as your mother) that which you do every day:
Visit NIST, SANS or other authoritative source and regurgitate something similar to this:
Determining risk management and also the concepts of minimization, avoidance, acceptance and transfer.
Compliance versus. Security
Explaining the variations between compliance and security and the possibility of thinking they’re exactly the same.
It’s Friday and people need just a little humor within our lives, so enjoy! Hasta pronto!
Groups IT Security and knowledge Protection, Regulating Compliance, Risk-Based To safeguard Professionals, Risk Management, Risk-Based To safeguard Professionals, IT Security and knowledge Protection, Security Controls