Thoughts on IT Risks

I’ve found that IT risks can best be thought of in three high level categories (I’ve rather negatively called these failures but after all failure is what we are trying to avoid) Failures to invest Investment failures Operational failures impacting the confidentiality, integrity and availability of information and information systems Categories like these help us organize our thoughts but more importantly they…