I really believe that information security is about the business and we need to bring the business together, specially when doing risk management.
Why risk management doesn't always work
I really believe that information security is about the business and we need to bring the business together, specially when doing risk management.