InfoSec Risk Security Performance 
The Falcon's View
MARCH 12, 2018
I'm convinced the answer to this query lies in stretching the "security as code" notion a step further by focusing on security performance metrics for everything and everyone instead of security policies. Applied, this approach scales very nicely across the organization. But I have digressed.
Notice Bored
AUGUST 23, 2020
ISO/IEC 27003 offers examples of the things that should be communicated: Information security policies and procedures, plus changes thereto; [The organisation's] Information [risk and] security objectives; Knowledge on information security risks; Requirements [of information] suppliers; Feedback on the information security performance (not least the (..)
Expert insights. Personalized for you.
40 
Let's personalize your content