ABSTRACT
What Is Information Risk Management? Th e discipline of information security may be considered as a subset of an organization’s overall risk management strategy. Information security is a focused initiative to manage risk to information in any form. Risk management concepts, when applied to information risk are readily managed within the context of an information security management system, or ISMS. An ISMS
Contents What Is Information Risk Management .................................................................................. 209 Why Information Risk Management ........................................................................................210 Background ..............................................................................................................................210 How Is Information Risk Management Implemented ..............................................................210
