Boston, MA 12/23/2013 (wallstreetpr) – EMC Corporation (NYSE:EMC)’s Security Division, RSA, recently released the latest SBIC (Security for Business Innovation Council) report that provides guidance as to how organizations can improve their business by replacing inflexible and outdated processes. These processes look after the protection and utilization of information assets. The report provides upgraded techniques, key challenges and upgraded techniques, which can help in planning and building new processes to help organizations in managing cyber risks more effectively and gain business advantage.
The report
The report is titled “Transforming Information Security: Future-Proofing Processes”. In this report, the council observed that business units inside the organizations are dominating the information risk management but the security processes that are outdated and inflexible cause hindrance to the business innovation, and are making it inefficient in fighting against new security risks to the security. The guidance has been provided by the council in this report, where they want information security teams to collaborate with the functional business groups to enable them to develop new processes and systems that can identify, track and evaluate cyber risks with a greater accuracy and at a faster rate.
Recommendations
The council has put forward five recommendations, to move forward the information security programs for the competitive advantage and to help business groups in minimizing the risks.
The business groups have to shift their focus from Technical Assets to important Business Processes beyond the technical view of protecting the information. The second recommendation was to examine cyber security risks very carefully and in a quantified business terms and then integrate these estimates of business impact into risk advisory process. The third one was to use automated tools that can track down risks very easily and accurately. The fourth recommendation was to develop capabilities that can collect data to prove efficacy of controls. The fifth and the last recommendation say that business units should set a course for data architecture.
