Take a sneak peek at the new NIST.gov and let us know what you think!
(Please note: some content may not be complete on the beta site.).
NIST Authors in Bold
|Author(s):||Linda Wilbanks; David R. Kuhn; Wes Chou;|
|Published:||February 03, 2014|
|Abstract:||Risk management is a common phrase when managing information, from the CISO to the programmer. We acknowledge that risk management is the identification, assessment and prioritization of risks and reflects how we manage uncertainty. These are some areas of risk that we have come to accept, their mitigation strategies are part of our development, part of our everyday work. Most IT professionals would agree that IT is good at identifying and managing the risks. But is that really the case or has risk management/mitigation become a buzz word for us?|
|Citation:||IEEE IT Professional|
|Pages:||pp. 20 - 21|
|Keywords:||computer security, risk management, security, security evaluation|
|Research Areas:||Information Technology|
|DOI:||http://dx.doi.org/10.1109/MITP.2014.7 (Note: May link to a non-U.S. Government webpage)|
|PDF version:||Click here to retrieve PDF version of paper (26KB)|