|
Enterprise Security Risk Management
John Petruzzi, CPP,CISM Enterprise security risk management (ESRM) is the name given to the effort to create an integrated approach to identifying and mitigating all the risks that an organization faces. ESRM’s holistic approach incorporates many business issues that have not been traditionally associated with security (such as audit and compliance) and others that have been overlooked by finance-run enterprise risk management programs (such as brand reputation). This session will look at the recent ESRM research by the CSO Roundtable and will discuss the lessons-learned of ESRM implementation with CSOs who have hands-on experience. Learn more about the ASIS Annual Seminar and Exhibits at www.asisonline.org. |
