Back to Educational Grid |
"IT Risk Management – A little bit more is a whole lot better”
In an interconnected world, IT risk can affect the whole enterprise, its customers and trading partners, and even the public. Executive management, wary of the potential for IT-related “headline” risk, looks to the CIO to handle IT risk as business risk. But many CIOs are unsure of how to most effectively and efficiently manage IT risk – and how to demonstrate effectiveness to senior management. Joint research with MIT’s Center for Information Systems Research, including surveys of 150 CIOs and CISOs worldwide, has revealed three basic approaches to effective management of IT risk. Every IT organization must be “good enough” at all three approaches, and excellent in one, to achieve effective risk management. The good news is that effective risk managers don’t spend much more than ineffective risk managers – it’s what they do, not what they spend, that makes the difference. Effective IT risk management is within the realm of the possible for almost every CIO. Presenter: |
