 Doing risk management correctlyRandall Frietzsche Cyber Security: A Peer-Reviewed Journal, 2019, vol. 3, issue 1, 14-24 Abstract: This paper aims to help organisations better understand what risk management is, why we need to do it, the methodology and expected outcomes of risk management. All organisations understand risk — it is a critical part of business. Companies invest millions of dollars in new initiatives designed to spur growth, expand into new markets and extend product or service offerings to better serve customers. These initiatives always have large risks; businesses have to worry about financial, legal, compliance, reputational and many other risks. And since most organisations today leverage technology to run their business, IT issues can lead to additional business risk. This paper will discuss how we should perform risk analysis in order to properly identify and manage IT issues that may lead to these business risks. As an industry, we all need to be experts at managing IT risk and translating that to our businesses, in order for them to properly understand how to move forward. Keywords: risk management; assessments; frameworks; governance; control objectives (search for similar items in EconPapers) Downloads: (external link) Related works: Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text Persistent link: https://EconPapers.repec.org/RePEc:aza:csj000:y:2019:v:3:i:1:p:14-24 Access Statistics for this article More articles in Cyber Security: A Peer-Reviewed Journal from Henry Stewart Publications |
Is your work missing from RePEc? Here is how to contribute.
Questions or problems? Check the EconPapers FAQ or send mail to .
EconPapers is hosted by the
School of Business at Örebro University.