Risk and Security Blog

How Red Teaming Gain Greater Immediate Traction Over Auditing

The 'learning by doing' opportunity that security exercises provide, is crucial to identifying failures in breach incident response as well as failures in security. So the appropriate design of a Red Team process will ensure that a balance is achieved between reinforcing security, and preparing the appropriate response.
Posted: 28 March 2014 by Optimal Risk Admin | with 0 comments

Being Prepared and Risk Informed

Ultimately, the justification for adopting a pre-emptive and proactive approach must be to enable better risk-informed decision-taking. A comprehensive evaluation of cyber risk requires a meticulous approach to mapping an organisation’s assets and processes before modeling risk against them, and there are few methodologies that are fully evolved to accomplish this.
Posted: 28 November 2013 by Optimal Risk Admin | with 0 comments