Priorities
In One of the biggest challenge in Cybersecurity is the usage of resources. This leads to a need of choosing between different needs. Hence we need to prioritize between different perspectives.
This will provide a tactical weight to the decision. Based on the tactical weight, we will be able to define what things that will be prioritized in front of other things.
Tactical Security is to do Prioritizations between different options in a structured way. It can be defined as he process of using evidence-based methods to rank and address different cyber security threats based on their likelihood and impact. A way of describing the interrelation between different factors that will contribute to the decision is us used a spider chart to visualize the relationships.
This will visually provide clues on where the priorities are for the organization. This will also provide input for a SWOT analysis of the cybersecurity organization.
A?prioritization matrix template?can then be used to list all criteria against the alternatives, attach weights to the criteria, and conduct the prioritization exercise.
Some example matrix templates are provided here:
In addition to the above mentioned discussion, there is another key point from 10 Laws of Cybersecurity Risk
Ruthless Prioritization is a survival skill?– Nobody has enough time and resources to eliminate all risks to all resources. Always start with what is most important to your organization, most interesting to attackers, and continuously update this prioritization.
Backlink
Forwardlink
Senior Cyber Security consultant CISSP/CISM/CRISC/CCSP and music producer
1 年Priorities will always be a challenge