Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

Digital Library

White Paper

Risk-Centered Practices

  • July 2013
  • By Julia H. Allen
  • In this paper, Julia Allen discusses the role that risk management and risk assessment play in choosing which security practices to implement.
  • Publisher: CERT
  • Abstract

    This article establishes the role that risk management and risk assessment play in determining what security practices to implement and in what order. Risk management is critical in sustaining an acceptable level of security, given that it is not possible to be 100% secure.

  • Download