Report title: IT Risk Management - Planning Cost-effective Mitigation of Risks to IT Services
from Butler Group
200 page report published Jun 01, 2008

Price $2,995.00 available for immediate download
Report Overview
 
Table of Contents
 
Search Inside
 
About Butler Group

In any organisation large enough to deploy IT solutions, IT systems deliver substantial value through the automation of repetitive tasks; the synchronisation of interactions with customers, suppliers, and partners; the management of high-value and sensitive information and the delivery and analysis of this information on behalf of users; and increasingly the automation and optimisation of end-to-end processes and the enforcement of business and statutory policies. For each of these benefits, IT professionals have to be ready to answer the inevitable question: â??What happens when it goes wrong?â?. IT systems are fallible: they can fail for different causes and in many different ways. Sometimes a failure will be immediately obvious to the organisation, and the business might start to suffer considerable financial loss straight away. In other circumstances a failure might be insidious, causing cumulative damage that might go unnoticed for a considerable period. However, other failures, although apparent, might be relatively trivial in their impact and would not justify the cost of a high-technology fix. KEY FINDINGS Business executives need to take personal responsibility for the conduct of key IT processes, with particular respect to Data Loss Prevention and Information Security. The business needs to understand that there are real, quantifiable costs associated with different types of IT risk. A properly executed risk management initiative based on a set of approved standards will raise the level of confidence of outside organisations or individuals in trading with the business. The IT Risk Management strategy needs to be kept aligned with the corporate risk management strategy and attitudes towards corporate tolerance of risk. With increasing dependence on the extended supply chain, a failure experienced by a business partner can be just as damaging as a failure in the organisationâ??s own IT environment. Mature standards and methodologies can assist an organisation to steer a proven path through the multiple facets of implementing IT Risk Management. The initiative in supporting technologies is moving from niche specialist vendors towards the large system and security management vendors. Governance, Risk, and Compliance (GRC) technologies will play an increasingly important role in IT Risk Management, but they will only be used at their most cost-effective potential when deployed within well-conceived, constantly-reviewed, and consistently-enforced processes. The potential for sensitive information to reach unintended and unauthorised recipients through the loss of portable media or Web-based security exposures can cause severe corporate embarrassment and considerable loss of revenue. Enforcement of legislation has focused the minds of corporate executives on compliance with minimum standards of risk avoidance. Some risks cannot be avoided 100% of the time in a cost-effective manner, and the business must plan for the cost of any incidents that do occur.

Source: Butler Group
Document ID: BGTC0053
Industry: Computer
Industry: Professional & Management Services
Free Sample: Click Here to Download
Format:
PDF Adobe Acrobat

Sections
TitleStarting PageNumber of Pages
Contents â?? December 2008 Section 1: Management Summary 9 1.1 Management Summary 11 Section 2: Introduction 15 2.1 Report Objectives and Structure 17 2.2 Governance, Risk, and Compliance Strategy 19 2.3 IT Vulnerabilities 23 Section 3: Business Issues and01
Contents – December 200801
Section 1: Management Summary96
1.1 Management Summary114
Section 1: Management Summary 901
1.1 Management Summary 1101
Section 2: Introduction1512
2.1 Report Objectives and Structure172
Section 2: Introduction 1501
2.1 Report Objectives and Structure 1701
2.2 Governance, Risk, and Compliance Strategy194
2.3 IT Vulnerabilities234
2.2 Governance, Risk, and Compliance Strategy 1901
2.3 IT Vulnerabilities 2301
Section 3: Business Issues and Drivers2718
3.1 Business Risk Profile293
Section 3: Business Issues and Drivers 2701
3.1 Business Risk Profile 2901
3.2 Business Implications of IT Risk325
3.3 Compliance and Security Requirements374
3.2 Business Implications of IT Risk 3201
3.3 Compliance and Security Requirements 3701
3.4 Understanding the Benefits414
Section 4: IT Risk Management Strategies4516
3.4 Understanding the Benefits 4101
Section 4: IT Risk Management Strategies 4501
4.1 Planning an IT Risk Management Strategy474
4.2 Roles and Responsibilities513
4.1 Planning an IT Risk Management Strategy 4701
4.2 Roles and Responsibilities 5101
4.3 Gauging IT Risk Maturity543
4.4 Supporting Strategies574
4.3 Gauging IT Risk Maturity 5401
4.4 Supporting Strategies 5701
Section 5: IT Risk Management Lifecycle6116
5.1 IT Risk Assessment633
Section 5: IT Risk Management Lifecycle 6101
5.1 IT Risk Assessment 6301
5.2 IT Risk Mitigation665
5.3 IT Risk Management Framework716
5.2 IT Risk Mitigation 6601
5.3 IT Risk Management Framework 7101
Section 6: Business Continuity7718
6.1 Business Continuity Strategy and Planning793
Section 6: Business Continuity 7701
6.1 Business Continuity Strategy and Planning 7901
6.2 Planning for Business Continuity825
6.3 Organisational and Infrastructure Resilience873
6.2 Planning for Business Continuity 8201
6.3 Organisational and Infrastructure Resilience 8701
6.4 Impact of External Services905
Section 7: Security9516
6.4 Impact of External Services 9001
Section 7: Security 9501
7.1 Security Management and Compliance973
7.2 Protecting Against Threats1004
7.1 Security Management and Compliance 9701
7.2 Protecting Against Threats 10001
7.3 Mitigating Identity and Access Risk1043
7.4 Information Risk and Data Loss Prevention1074
7.3 Mitigating Identity and Access Risk 10401
7.4 Information Risk and Data Loss Prevention 10701
Section 8: Project Risk11118
8.1 Managing the Project Portfolio1133
Section 8: Project Risk 11101
8.1 Managing the Project Portfolio 11301
8.2 Methods for Assessing Project Risk1164
8.3 Managing Project Delivery Risk1205
8.2 Methods for Assessing Project Risk 11601
8.3 Managing Project Delivery Risk 12001
8.4 Evaluating Project Benefit Risk1254
Section 9: Market Analysis12914
8.4 Evaluating Project Benefit Risk 12501
Section 9: Market Analysis 12901
9.1 IT Risk and the SME1313
9.2 Supporting Technologies1345
9.1 IT Risk and the SME 13101
9.2 Supporting Technologies 13401
9.3 IT Risk Functionality Within Management Suites1394
Section 10: Standards and Methodologies14320
9.3 IT Risk Functionality Within Management Suites 13901
Section 10: Standards and Methodologies 14301
10.1 Standards and Methodologies Relevance Matrix1451
10.2 Standards and Methods Consolidated14617
10.1 Standards and Methodologies Relevance Matrix 14501
10.2 Standards and Methods Consolidated 14601
Section 11: Vendor Profiles16324
Agiliance1651
Section 11: Vendor Profiles 16301
Agiliance 16501
Archer Technologies1661
Axentis1671
Archer Technologies 16601
Axentis 16701
BMC1681
Brabeion Software1691
BMC 16801
Brabeion Software 16901
BWise1701
CA1711
BWise 17001
CA 17101
eIQnetworks1721
HP1731
eIQnetworks 17201
HP 17301
IBM1742
MEGA1761
IBM 17401
MEGA 17601
Methodware1771
Modulo1772
Methodware 17701
Modulo 17701
NetIQ1791
OpenPages1801
NetIQ 17901
OpenPages 18001
Oracle1811
Paisley1821
Oracle 18101
Paisley 18201
Relational Security1831
Symantec1841
Relational Security 18301
Symantec 18401
Tripwire1852
Section 12: Glossary18714
Tripwire 18501
Section 12: Glossary 18701

Enter the keyword(s) which you would like to search for within this document and click "Search"  


Price: $2,995.00



  Can't Decide?

Purchasing premium research sight unseen can be intimidating. At Alacra we want you to know what you are getting. Visit our FAQ or ask our Customer Service Team any questions about the report you are considering purchasing.