Emergency Incident ResponseReport a Confirmed or Potential Breach? Call +1 770-870-6343
0 Results Found
              Back To Results
                White Papers

                Six Steps to Implementing a Risk-Based Security Approach

                Learn about the stages used in identifying the key components needed to implement a risk-based security approach.

                A mature information security program is built around an organization's understanding of risk in the context of the needs of the business.

                This risk-based cybersecurity approach can be used as one of the main methods of objectively identifying what security controls to apply, where they should be applied and when they should be applied. After all, it is difficult to defend against something when you don't prioritize or know what that something is that requires defending, where and when that something is, and how or what methods are available to defend it with.

                Unfortunately this type of approach is not being properly implemented due to its sophisticated nature. In fact, according to a recent Ponemon report, 50 percent of IT and security personnel do not believe risk management is aligned with their organization's goals.

                As a result, SecureWorks felt it would be useful to provide a step-by-step process that details the stages and subsequent substages used in identifying the key components needed to implement a risk-based security approach.

                Topics covered in implementing a risk-based security approach:

                • Prioritize Your Information Assets and Processes
                • Identify and Prioritize Risks
                • Implement Foundational Security Controls Across Those Key Assets
                • Build a Targeted Security Capability Model
                • Develop the Security Improvement Roadmap
                • Ensure Governance and Organization Engagement

                Like what you're reading?
                Just a few questions to get started


                Select Role:

                • Board of Directors
                • CEO / CFO / COO
                • CISO / CSO
                • CIO / CTO
                • IT / IS / Security VP/Director
                • IT / IS / Security Manager
                • IT / IS / Security Staff
                • IT / IS / Non-Security
                • Risk / Legal / Compliance / Finance
                • Sales / Marketing
                • Press / Industry Analyst
                • Student

                Select Country:

                • Select an item

                Select State:

                • Select an item

                Select Annual Revenue:

                • ≥ $500M
                • $100-$499M
                • ≤ $100M

                Select Industry:

                • Banking
                • Business Services
                • Credit Union
                • Education
                • Finance
                • Government
                • Health Care (Non-Hospital)
                • Heavy Industry
                • Hospitality
                • Hospitals
                • Insurance
                • Legal
                • Manufacturing
                • Media
                • Membership Organizations
                • Retail
                • Technology
                • Telecom
                • Transportation
                • Utilities
                • Other

                Current Security Environment?:

                • Managing In-House
                • Managing Externally (3rd Party)
                • Blended Model (In-house and 3rd Party)
                • Not sure

                Select Next Security Initiative Timeframe:

                • 0-3 months
                • 3-6 months
                • 6-12 months
                • 12-24 months

                Select Our Greatest Security Challenge:

                • Securing the Cloud
                • Assessing security posture
                • Optimizing Security Operations
                • Protecting critical assets
                • Meeting & maintaining compliance
                • Preventing a data breach
                • Access to actionable security intelligence
                • Access to security expertise
                • Preparing & responding to an incident

                Interested in learning more

                Currently Looking for Assistance With (Select all that Apply)

                Select Best time to call:

                • Early morning (8-10am EST)
                • Late morning (10am-12pm EST)
                • Early afternoon (12-3pm EST)
                • Late afternoon (3-5pm EST)

                Secureworks News :

                Related Content