A KISS Approach to Enterprise Security Risk Management

Enterprise security risk management (ESRM) has been a topic of increasing interest for security managers over the past few years, and ASIS International has identified it as a strategic focus. But a review of the literature, beginning with the 2010 CSO roundtable paper on ESRM, raises two issues that could make ESRM implementation difficult. First, … Continue reading A KISS Approach to Enterprise Security Risk Management