Bugwatch: Managing network security risk
Recent legal requirements and regulations have increased corporate risk exposure to the point where the issue of IT risk management either is, or should be, at the top of upper management's agenda.
As a result of legislation such as Sarbanes-Oxley and the Health Insurance Portability and Accountability Act of 1996, enterprises have started to re-analyse their assets and to prioritise their IT investments based on the their perceived threat level and the consequences that may ensue if any threat were to become reality.
By Jukka Sieppi at vnunet.
[ Read more ]