Business Approaches to Risk Management

In this episode of InfoSec Insider, Wayne Armstrong and Chris Heighes, both Senior Consultants at URM, offer key advice on effective approaches to cyber and information security risk management from a business perspective.  Chris and Wayne draw upon their combined 45 years of experience in information security and risk management to discuss:

• What good, risk-based decision-making actually looks like in practice, and where it most commonly breaks down
• The most concerning information security risks of today that do not get enough attention at the board or executive level
• How organisations can move away from checklist-driven compliance and towards meaningful cyber risk management that supports business objectives
• How organisations should rethink ownership and accountability for information security risk in light of growing dependence on cloud services and third-party providers
• The capability or mindset they believe information security leaders must develop now to remain effective risk advisers in the coming years.

Ask Wayne and Chris a question:  https://urmconsulting.com/podcasts/business-approaches-to-risk-management

If you enjoyed this episode of InfoSec Insider, you can leave us a rating and review here: https://ratethispodcast.com/infosecinsider 

You can find more episodes of InfoSec Insider here: https://urmconsulting.com/podcasts             

Brought to you by URM, the UK’s leading information and cyber security specialists.