Opinion : Mark Ames discusses "Value for Policy"
Your board and audit committee are looking for reduction in risk exposure driven by your information security policy. Is this something you can track and measure?
Your board and audit committee are looking for reduction in risk exposure driven by your information security policy. Is this something you can track and measure?