VALHALLA, N.Y., March 21, 2011 – A story in the current issue of Network World magazine examines the increasing influence of risk management in the IT sector. In his March 10, 2011 article entitled “Watch out CISOs and CSOs: Chief Risk Officers may be gaining on you,” Senior Editor Tim Green reports that as risk management becomes more prevalent, it is having an effect on traditional security jobs.
“Over the past several months our clients are reporting that risk assessment continues to gain momentum as a top priority for the overall business,” concurs Lou Steinberg, CEO of Rev2, the leading provider of next-generation risk management solutions. “We see this trend escalating across a variety of vertical markets, including manufacturing and financial enterprises and service provider environments.”
“Chief Security Officers may feel more pressure from a new breed of security professional – the chief information risk officer – now that the federal government has made risk management mandatory and spelled out in a new [National Institute of Standards, or NIST] document just how risk ought to be assessed and dealt with,” writes Greene.
This push by the federal government may influence what happens in the private sector, where risk assessment is long overdue as a means to determine how information security dollars get spent, says John Pironti, president of IP Architects, a security-consulting firm. “We should do risk first, security second,” Pironti says. “Security is there to meet the needs of risk.”
“This gives a context for how IT and information systems are deployed vs. a random build-out of the infrastructure,” says Ronald Ross, one of the authors of the NIST document entitled “Managing Information Security Risk.”
According to the story, risk in the broader sense is the ability of a business to absorb and react to a threat. “A common thread among risk assessment models is culling input from people with a broad range of expertise – business, legal, technical, etc. – and feeding it to a central, decision-making person or body. And it’s best to cast a wide net,” writes Greene.
Greene’s story appears at http://www.networkworld.com/news/2011/031011-chief-risk-officers.html
About Rev2
Rev2 is the leading provider of next-generation risk management solutions. Our RiskView® Risk Concentration Analysis™ framework identifies, compares and prioritizes vulnerabilities throughout the business. Rev2 offers tailored RiskView solutions for Service Providers, Manufacturers, Financial Services, Government organizations, and other Enterprises.
RiskView solutions enable our customers to identify the risks that represent the business’s greatest vulnerabilities, and address these vulnerabilities before they impact the bottom line. This provides them with an unprecedented competitive advantage by helping them to maximize the realization of existing business opportunities. Our customers typically realize ROI within weeks.
Contact us today for a Proof of Concept tailored to your business: 400 Columbus Ave., Suite 240E, Valhalla, N.Y. 10595, 914.614.8600. http://rev2.com, info
rev2
com.
###
Copyright © 2011, Rev2. All rights reserved. The RiskView® application is a registered trademark of Rev2. The Rev2 Managing Risks That Matter™ logo design and the Risk Concentration Analysis™ (RCA) methodology are trademarks of Rev2. All other trademarks in this document are the properties of their respective owners.
