Information Security Leader, Author, Instructor and Speaker

Quantitative Risk Assessment

Posted on September 5, 2012 in Articles | by

“So, are you ready to make this investment in the security of your data?”  As the salesperson pushes a proposal for a new data center fire suppression system across the table, you question whether the $50,000 investment is warranted.

Many technology professionals make risk mitigation decisions based upon instinct and anecdote, sometimes leading to overly conservative approaches due to a fear of underinvesting in critical technology protections.  The use of quantitative risk management techniques can provide a dollars-and-cents basis for making these decisions and explaining the rationale to non-technical managers.

Originally published in BizTech Magazine, Sept 05, 2012

Leave a Reply

Your email address will not be published. Required fields are marked *

Mike Chapple, CISSP, Ph.D.

Mike is an IT leader, information security professional, author, speaker and trainer with over fifteen years of experience in the field.

Full Biography