So tell me….who owns this risk?

Recent experience of helping new clients develop information asset based risk management processes has given me more insight into the area of who REALLY owns risks (and opportunities). Most of the work I have been doing is in the context of a risk process aligned with ISO27001 requirements, but some risk assessments had very specific… Read More