ABSTRACT
This chapter extends our risk management exercise into the area of reducing converged ICT risks through proactive controls and safeguards that organizations may employ to improve assurance. This chapter contains suggested controls and safeguards to mitigate or reduce the risks posed from the enumerated threats in Chapter 3. Typically, a good control system will balance prevention, detection, response and recovery safeguards;2 this chapter uses this framework of prevent/detect/respond/recover to present the safeguards around converged assets. Chapter 5: Managing Assurance, will focus on the broader management techniques associated with the safeguards described here.
