Security News > 2021 > September > 5 Tips for Achieving Better Cybersecurity Risk Management

Cybersecurity frameworks such as ISO 27001, the international framework that defines best practices for an information security management system, can help organizations tackle business risk and enhance overall cyber-defense.

In addition to ISO 27001, there are several other frameworks to consider, including the National Institute of Standards and Technology Cybersecurity Framework, which offers in-depth support to help enterprises identify the necessary actions to address and decrease risk.

The Center for Internet Security Critical Security Controls also publishes the CIS Critical Security Controls which is made up of 20 critical security controls broken down into key recommendations and best practices to help organizations decrease the likelihood of a successful cyberattack.

Threat intelligence can empower security teams to make crucial modifications to the existing risk assessment framework, to prevent newly developing threats from taking hold.

Tool Rationalization = Enhanced Cybersecurity ROI. A major benefit of cyber-risk management is the ability for organizations to identify gaps in performance and coverage, or even redundant layers within security controls as they seek to fully implement the cyber-risk-management process.

Companies should consider setting a target security posture and then systematically evaluate their current security infrastructure compared to the objective.

News URL

https://threatpost.com/tips-cybersecurity-risk-management/174968/