Welcome to Collaborative Strategy Guild Where insights are transformed into actions at the intersection of collaboration, information management, security, and business strategy.
|
 I came across, via healtcareinfosecurity this morning, coverage of a recent report entitled “The True Cost of Compliance“. From the coverage:
What the study finds, says Rekha Shenoy, vice president of strategy for Tripwire, is that across the board, regardless of industry or standard, companies that consistently comply with security requirements and standards save three times more in security-related expenses annually than companies that are categorized as non-compliant.
Hmm… Interesting, if true. But I have to say, I’m dubious about the conclusion here. Ordinarily, I’d go to the original source material to investigate the methodology for how they arrived at this conclusion, but I can’t figure out… Continue reading: Skeptical of Security ROI Research
 Kudos to HP on their 2010 Top Cyber Security Risks Report. It’s interesting, transparent, and open about how they’ve derived conclusions. Point being, it’s a very useful, well-written, and well-presented report.
Of particular interest to me is the fact that the overall number of vulnerabilities has continued to go down for yet another year – and it’s doing so in a way that implies a parabolic curve. I’m not saying it *is* a parabolic curve by the way, I’m just saying that it looks like it could be (although past performance is not indicative of future results.)
So either that will continue, meaning less vulns again next year –… Continue reading: HP Cyber Risks Report. Now *this* is a good report.
|
|
I came across, via healtcareinfosecurity this morning, coverage of a recent report entitled “The True Cost of Compliance“. From the coverage: