Quantifying Risk
Columbus, OH—Interhack Visiting Scientist Jack Jones speaks to senior information technology leaders at the CIO Solutions Gallery in Columbus, Ohio on November 30, 2010 about what risk is. Mr. Jones introduces the audience to a consistent nomenclature to quantify risk and a method to assess it.
Ask a group of information security professionals to define risk, and you are certain to get several different answers. In addition, often the terms risk, threat, and vulnerability are used interchangeably, even though they are not the same thing. Without a solid understanding of what risk is, what the factors that drive risk are, and a consistent nomenclature to quantify and assess it, you cannot effectively communicate or sell a strategy to manage it. Listen to how one former Fortune 100 CISO solved that problem.
The CIO Solutions Gallery events are invitation only.
About Interhack
Interhack aids executives and attorneys facing challenges and opportunities involving the use of information. We perform security and privacy assessments, as well as services to work with data in legal proceedings. Our work is used to find the right questions to ask and the best answers science can provide. Based in Columbus, Ohio, Interhack supports clients all over North America. Additional information about Interhack is available at web.interhack.com.