Sounds utterly complicated?
Yes, but fear not!
The providers, users and consumers of the output of such operational risk management systems will be information security practitioners that were born in and/or lived through several decades of technology evolution at a rapid pace. However, their perception of acceptable risk, information security and privacy standards may be quite different from todays.
So, how do you envision the role Information Security Risk Management 20 years from now?
Ivan Arce, co-founder of Core Security, sets the technical direction for the company and is responsible for overseeing the development, testing and deployment of all Core Security products. He also writes for numerous technical publications, speaks frequently at industry events and is commonly quoted in industry publications. He also currently serves as the Associate Editor of the IEEE Security & Privacy Magazine.
Sign up for CIO Asia eNewsletters.