期刊名称:International Journal of Network Security & Its Applications
印刷版ISSN:0975-2307
电子版ISSN:0974-9330
出版年度:2018
卷号:10
期号:5
出版社:Academy & Industry Research Collaboration Center (AIRCC)
摘要:The philosophy of Enterprise Security Risk Management (ESRM) drives a risk-based approach tomanaging any security risks, physical or logical and holistically applies to every security process. Thereare globally established risk principles that are common among any developed risk management standard.This model associates the relationship of risk principles to the practice of managing security risks. TheESRM processes, when successfully and consistently adapted to a security program, will define what aprogressive security program looks like, drive strategic through initiatives, build the businessunderstanding of security’s role to develop a budgeting strategy, and initiate board-level, risk-basedreporting. The management security leader's role in ESRM is to manage risks and unthinkable harm toenterprise assets and stockholder in partnership with the business leaders whose assets are exposed tothose risks management. ESRM is part of educating business leaders on the realistic of impacts. Theseidentified risks, presenting any potential strategies to mitigate those impacts, and enacting the optionchosen by the business in line with acceptable levels of business risk tolerance. The present data should beused to showcase how our service helps identify, evaluate, and mitigate risks at face value that would bedetrimental to a company’s long-term prosperity. We need to show how using our security riskmanagement will ultimately benefit the company's work by improving policies and procedures and reducingother expenses through the use of risk principles management.
