In 2013, The Ohio State University introduced a new Information Risk Management Program. The centerpiece of the program rollout was a lightweight risk assessment, which allowed the creation of information risk scorecards for campus departments, as well as campus-wide metrics for the university's senior leaders. The seminar will describe how an annual risk assessment is essential to the success of any information security program. The seminar will also provide a methodology for developing and executing an annual lightweight information risk assessment that won't kill your organization. The seminar will include many tips for success from the trenches at Ohio State.
Outcomes: Learn how to develop a lightweight risk assessment * Learn how to develop simple risk metrics * Learn how to leverage risk assessment metrics to support information security and risk management program objectives